Freedom Hosting operator gets 27 years for hosting Dark Web child abuse sites
The wheels of justice have turned, if perhaps a bit slower than you may have expected. A Dublin resident, Eric...
OSINT
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Why backups aren’t a “silver bullet” against ransomware, with Matt Crape: Lock and Code S02E17The...
Numando: a Banking Trojan Targeting Brazil Abuses YouTube for Spreading
ESET researchers have continued their investigation on the Latin American banking trojans with Numando, primarily targeting Brazil and seldom Mexico...
Links Detected Between MSHTML Zero-Day Attacks and Ransomware Operations
The exploitation of a recently fixed Windows zero-day vulnerability was attributed to known ransomware operators, according to Microsoft and threat...
Lubbock County Denies Data Leak, Says Data Temporarily Attainable Under New Software System
Earlier this month, the personal court records for residents of Lubbock County, located in the US state of Texas, were...
Secrets from Public Repositories Were Exposed Due to Travis CI Flaw
Travis CI, a continuous integration provider located in Berlin, has patched a severe issue that exposed signing keys, API keys,...
CrowdSec – An Open-Source Massively Multiplayer Firewall Able To Analyze Visitor Behavior And Provide An Adapted Response To All Kinds Of Attacks
CrowdSec is a free, modern & collaborative behavior detection engine, coupled with a global IP reputation network. It stacks on...
PS2EXE – Module To Compile Powershell Scripts To Executables
Overworking of the great script of Ingo Karstein with GUI support. The GUI output and input is activated with one...
Europol arrested 106 fraudsters, members of a major crime ring
Europol, along with Italian and Spanish police, dismantled a major crime organization linked to the Italian Mafia that focuses on...
Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme
A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking...
Numando, a new banking Trojan that abuses YouTube for remote configuration
Numando, a new banking Trojan that abuses YouTube, Pastebin, and other public platforms as C2 infrastructure and to spread. ESET...
Epik – 15,003,961 breached accounts
In September 2021, the domain registrar and web host Epik suffered a significant data breach, allegedly in retaliation for hosting...
City of Yonkers Refuses to Pay Ransom After Attackers Demand $10 million
The City of Yonkers has refused to pay the ransom after ransomware attackers demanded a ransom of $10 million to...
German Election Authority Confirms Probable Cyber Attack
Suspected hackers momentarily impacted the website of the authority managing Germany's September 26 federal election, a spokesperson for the agency...
Hackers Impersonate Bank Customers and Make $500k in Fraudulent Credit Card Payments
Hackers from other countries were able to impersonate 75 bank clients and made $500,000 in fraudulent credit card payments. This...
New Malware Variant Employs Windows Subsystem for Linux for Attacks
Security experts have found a new malware variant that uses Windows Subsystem for Linux to infect systems covertly. The research...
InlineExecute-Assembly – A PoC Beacon Object File (BOF) That Allows Security Professionals To Perform In Process .NET Assembly Execution
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly...
QLOG – Windows Security Logging
QLOG provides enriched Event Logging for security related events on Windows based systems. It is under heavy development and currently...
Why Edward Snowden is urging users to stop using ExpressVPN?
The popular whistleblower Edward Snowden recommends customers of ExpressVPN VPN service to stop using it. Last week the Israeli cybersecurity...
Security Affairs newsletter Round 332
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
The Biden administration plans to target exchanges supporting ransomware operations with sanctions
US Government is expected to issue sanctions against crypto exchanges, wallets, and traders used by ransomware operations to cash out...
Threat actor has been targeting the aviation industry since at least 2018
Security researchers from the Cisco Talos team uncovered a spear-phishing campaign targeting the aviation industry for two years avoiding detection....
Hackers attack Russian organizations through a new Microsoft Office vulnerability
Information security specialists from Kaspersky Lab reported that hackers are trying to attack Russian companies through a new vulnerability in...
Republican Governors Association Targeted in Microsoft Exchange Server Attacks
The Republican Governors Association was one of many U.S. organizations attacked in March when a nation-state group exploited vulnerabilities in...
