Telegram flaw could have allowed access to users secret chats
Experts at Shielder disclosed a flaw in the Telegram app that could have exposed users’ secret messages, photos, and videos to...
News
RDP, the ransomware problem that won’t go away
The year 2020 will certainly be remembered as one of the most difficult and tragic years humankind has faced in...
Egregor ransomware hit by arrests
In a collaboration between French and Ukranian law enforcement, arrests have been made that might put a dent in one...
Extortion, precision malware, and ruthless scams. Read the State of Malware 2021 report
Last year, threat actors took advantage of the COVID-19 public health crisis in a way previously considered unimaginable, not only...
Threat Actors Targeting British Users in a Facebook Phishing Campaign
After targeting the German users in the ongoing Facebook phishing campaign threat actors have shifted their focus onto the British...
Palo Alto Next Generation Firewall Detected With Four Vulnerabilities
Details of a series of bugs in Palo Alto Firewall Software, which the network provider addressed last September, were revealed...
DDoS attacks in Q4 2020
News overview Cybercriminals are constantly on the lookout for means and methods to make attacks more destructive. In Q4 2020, Citrix...
Monitor Google Cloud Platform (GCP) Data With InsightIDR
InsightIDR was built in the cloud to support dynamic and rapidly changing environments—including remote workers, hybrid cloud and on-premises architectures,...
Hackers abusing the Ngrok platform phishing attacks
Researchers from threat intelligence Cyble have discovered threat actors abusing the Ngrok platform in a fresh phishing campaign. Researchers at...
Popular SHAREit app is affected by severe flaws yet to be fixed
Multiple vulnerabilities in the popular file-sharing app SHAREit have yet, to be addressed, experts from Trend Micro warned. SHAREit is...
A new Bluetooth overlay skimmer block chip-based transactions
Experts discovered a new Bluetooth overlay skimmer that interferes with the ability of the terminal to read chip-based cards, forcing...
VMware fixes command injection issue in vSphere Replication
VMware released security patches for a potentially serious vulnerability affecting the vSphere Replication product. VMware has recently released security patches...
France agency ANSSI links Russia’s Sandworm APT to attacks on hosting providers
French agency ANSSI attributes a series of attacks targeting Centreon servers to the Russia-linked Sandworm APT group. The French security...
Talking Emotet’s takedown with Adam Kujawa: Lock and Code S02E01
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Gang arrested for SIM-swapping celebrities, stealing $100 million
The UK’s National Crime Agency (NCA)—working alongside the US Secret Service, Homeland Security, the FBI, Europol, and the District Attorney’s...
Yandex Suffers Data Breach, Exposes Email Accounts
Russian internet and search organization Yandex declared on Friday that one of its system administrators had enabled unapproved access to...
US court sentenced Ukrainian to seven years in prison for electronic fraud
A court in the United States has sentenced Ukrainian citizen Alexander Musienko to more than seven years in prison for...
RansomExx Gang Target French Health Insurance Company in a Ransomware Attack
Mutuelle Nationale des Hospitaliers (MNH), a French health insurance company has been hit by a ransomware attack that has severely...
PayPal Suffered Cross-Site Scripting -XSS Vulnerability
The PayPal currency converter functionality was damaged by severe cross-site scripting (XSS) vulnerability. An attacker might be able to run...
FBI Warns About Using TeamViewer and Windows 7
The FBI issued this week a Private Industry Notification (PIN) caution to warn organizations about the dangers of utilizing obsolete...
Spam and phishing in 2020
Figures of the year In 2020: The share of spam in email traffic amounted to 50.37%, down by 6.14 p.p....
The malicious code in SolarWinds attack was the work of 1,000+ developers
Microsoft says it found 1,000-plus developers’ fingerprints on the SolarWinds attack Microsoft’s analysis of the SolarWinds supply chain attack revealed...
French and Ukrainian police arrested Egregor ransomware affiliates/partners in Ukraine
An international operation conducted in Ukraine and France lead to the arrest of criminals believed to be affiliated with the...
The kingpin behind Joker’s Stash retires with a billionaire exit
The administrators of the most popular carding marketplace on the dark web Joker’s Stash announced his retirement. Cybercriminal behind the...
