CISA demands US govt agencies to update SolarWinds Orion software
US Cybersecurity and Infrastructure Security Agency (CISA) urges US federal agencies to update the SolarWinds Orion software by the end...
News
New Golang worm turns Windows and Linux servers into monero miners
Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. A newly discovered worm turns...
The most enticing cyberattacks of 2020
In 2020, we experienced a major shift. Much of the world pitched in to limit the spread of the coronavirus,...
Kaspersky has reported hacker attacks on COVID-19 researchers
The hacker group Lazarus attacked the developers of the coronavirus vaccine: the Ministry of Health and a pharmaceutical company in...
Metasploit 2020 Wrap-Up
2020 was certainly an interesting year. There were quite a few newsworthy events and some fantastic exploit content released. Let’s...
Google Docs bug could have allowed hackers to hijack screenshots
Google has addressed a bug in its feedback tool incorporated across its services that could have allowed attackers to view...
Discord Channel now available.
I have received a couple of request recently to create a discord channel but had never really had the time...
US Treasury warns of ransomware attacks on COVID-19 vaccine research
The US Treasury Department’s Financial Crimes Enforcement Network (FinCEN) warns of ransomware attacks on COVID-19 vaccine research organizations. The US...
SolarWinds hackers aimed at access to victims’ cloud assets
Microsoft says that SolarWinds hackers aimed at compromising the victims’ cloud infrastructure after deploying the Solorigate backdoor (aka Sunburst). The...
Declaring War Against Cyber Negligence
Amidst perhaps the most widespread and impactful cyberattack in history, American businesses and government agencies alike must take a drastically...
The head of Group-IB Mr. Sachkov described the portrait of a typical Russian hacker
Not only a programmer but also just a specialist with a good knowledge of mathematics can become a hacker in...
Digital Footprint Intelligence Report
Introduction The Digital Footprint Intelligence Service announces the results of research on the digital footprints of governmental, financial and industrial...
SearchDimension search hijackers: An overview of developments
Background information on SearchDimension SearchDimension is the name of a family of browser hijackers that makes money from ad clicks...
Japanese Kawasaki Heavy Industries discloses security breach
Japanese giant Kawasaki Heavy Industries discovered unauthorized access to a Japanese company server from multiple overseas offices. Kawasaki Heavy Industries...
CISA releases a PowerShell-based tool to detect malicious activity in Azure, Microsoft 365
Cybersecurity and Infrastructure Security Agency (CISA) released a tool for detecting potentially malicious activities in Azure/Microsoft 365 environments. The Cybersecurity...
Threat actor is selling a dump allegedly including 2,5M customers of service provider Ho Mobile
Threat intelligence analyst discovered a threat actor that is selling a database of the Italian mobile service provider Ho mobile....
Finland confirms that hackers breached MPs’ emails accounts
The Parliament of Finland confirmed that threat actors had access to email accounts of multiple members of parliament (MPs). “Parliament...
Nefilim ransomware operators leak data stolen from Whirlpool
The American multinational manufacturer and marketer of home appliances Whirlpool was hit by the Nefilim ransomware gang. The American multinational manufacturer and marketer of home appliances Whirlpool...
Multi-platform card skimmer targets Shopify, BigCommerce, Zencart, and Woocommerce stores
Experts warn of a multi-platform credit card skimmer that can target online stores running on Shopify, BigCommerce, Zencart, and Woocommerce....
A week in security (December 21- December 27)
Last week on Malwarebytes Labs we warned our readers about not so festive social media scams, how Emotet returned just...
Freedom Finance’s customer data got leaked after employee fell for phishing attack
Broker Freedom Finance admitted the fact of hacking its internal network and stealing data leaks about 16,000 clients of the...
Top 20 Most Popular Hacking Tools in 2020
Although 2020 has been the worst year since 1945, as last year, this year we made a ranking with the...
Taking Inspiration from our Security Nation in an Otherwise Uninspiring Year
Well, what a year it has been. I won’t waste your time by recapping the many, many difficulties that 2020...
E-commerce app 21 Buttons exposes millions of users’ data
Researchers discovered that the popular e-commerce app 21 Buttons was exposing private data for 100s of influencers across Europe. Researchers from...
