What Cybercriminals Do with Your Personal Information? Here’s How to Defend
We all know that data breach is a major issue that can cause devastating damage to organizations and individuals, but...
threatintel
Trust Wallet & MetaMask Crypto Wallets: Targeted by New Support Scam
Users of Trust Wallet and MetaMask wallets are the targets of ongoing malicious Twitter phishing attacks aimed at stealing cryptocurrency...
Information security exercises will be held at five cyber polygons in Russia
Russian President Vladimir Putin has set the task of digital transformation of key sectors of the economy. Therefore, to protect...
Ransomware Attacks Growing at a Fast Rate
Ransomware has become a burning concern to every office in the world which wasn't even existing 30 years before. Probably...
Google and Mozilla Develop an API for HTML Sanitization
Google, Mozilla, and Cure53 engineers have collaborated to create an application programming interface (API) that offers a comprehensive solution to...
Bizarro banking Trojan expands its attacks to Europe
Bizarro is yet another banking Trojan family originating from Brazil that is now found in other regions of the world....
Corsair_Scan – A Security Tool To Test Cross-Origin Resource Sharing (CORS)
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS) misconfigurations. CORS is a mechanism that allows restricted resources...
Eyeballer – Convolutional Neural Network For Analyzing Pentest Screenshots
Eyeballer is meant for large-scope network penetration tests where you need to find "interesting" targets from a huge set of...
Android stalkerware, a danger for victims and stalkers
ESET research shows that Android stalkerware apps are affected by vulnerabilities that further threaten victims. ESET research reveals that common...
Expert released PoC exploit code for Windows CVE-2021-31166 bug
A security researcher has published a working proof-of-concept exploit code for a wormable Windows IIS server vulnerability tracked as CVE-2021-31166....
Bitcoin down: 51% attack? No, put the blame on Elon Musk
The price of Bitcoin falls after Elon Musk declared that its company, Tesla, may have sold holdings of the cryptocurrency...
Conti ransomware demanded $20M ransom to Ireland Health Service Executive
Ireland Health Service Executive (HSE) refuses to pay a $20 million ransom demand after its systems were hit by the Conti...
Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia
Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the...
A week in security (May 10 – 16)
Last week on Malwarebytes Labs, we watched and reported on the Colonial Pipeline ransomware attack as developments of its story...
Beware of Lorenz Ransomware Gang Targeting Organizations with Customized Attacks
Security researchers have unearthed a new ransomware operation known as Lorenz targeting organizations worldwide with customized attacks and demanding hundreds...
Signal Taunts WhatsApp as Confusion Looms Large Over its New Privacy Policy
WhatsApp will take action against users who have not approved the privacy policy though it will not delete users' accounts...
Remote Access Trojans Target Aerospace and Travel Industries
Earlier this week, Microsoft Security Intelligence tweeted that somehow a remote access Trojan (RAT) campaign was being tracked by them...
FIN7 is Spreading a Backdoor Called Lizar
Under the pretext of being a Windows pen-testing platform for ethical hackers, the infamous FIN7 cybercrime gang, a financially motivated...
DFIR-O365RC – PowerShell Module For Office 365 And Azure AD Log Collection
PowerShell module for Office 365 and Azure AD log collectionModule description The DFIR-O365RC PowerShell module is a set of functions...
Red-Kube – Red Team K8S Adversary Emulation Based On Kubectl
Red Kube is a collection of kubectl commands written to evaluate the security posture of Kubernetes clusters from the attacker's...
Two flaws could allow bypassing AMD SEV protection system
The chipmaker AMD published guidance for two new attacks against its SEV (Secure Encrypted Virtualization) protection technology. Chipmaker AMD has...
MSBuild tool used to deliver RATs filelessly
Hackers abuses Microsoft Build Engine (MSBuild) to filelessly deliver malware on targeted Windows systems, including RAT and password-stealer. Researchers from...
Security Affairs newsletter Round 314
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Pakistan-linked Transparent Tribe APT expands its arsenal
Alleged Pakistan-Linked cyber espionage group, tracked as Transparent Tribe, targets Indian entities with a new Windows malware. Researchers from Cisco...
