Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7
Do you know about CVE-2013-4866? No? It details a hardcoded PIN in a Smart Bidet giving attackers access to the
Read more
News
News
APT32 state hackers target human rights defenders with spyware
Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. Vietnam-linked APT32 (aka Ocean Lotus)
Read more
Airplane manufacturer Bombardier has disclosed a security breach, data leaked online
Hackers posted data stolen from manufacturer of business jets Bombardier on Clop ransomware leak site following alleged FTA hack. Hackers
Read more
VMware addresses a critical RCE issue in vCenter Server
VMware addressed a critical remote code execution flaw, tracked as CVE-2021-21972, in vCenter Server virtual infrastructure management platform. VMware has
Read more
Twitter removes 100 accounts linked to Russia disseminating disinformation
Twitter removed dozens of accounts allegedly used by Russia-linked threat actors to disseminate disinformation and target western countries. Twitter has
Read more
IBM addressed flaws in Java Runtime, Planning Analytics Workspace, Kenexa LMS
IBM has released security patches to address high- and medium-severity vulnerabilities impacting some of its enterprise solutions. IBM has released
Read more
Clop targets execs, ransomware tactics get another new twist
Ransomware peddlers have come up with yet another devious twist on the recent trend for data exfiltration. After interviewing several
Read more
The mystery of the Silver Sparrow Mac malware
Cyber security company Red Canary published findings last week about a new piece of Mac malware called Silver Sparrow. This
Read more
The Russian created Clubhouse for Android in one day
The former developer of the Android version of the application of the Russian social network VKontakte Grigory Klyushnikov created Clubhouse
Read more
Malwarebytes Report Confirms the Change in Tactics of Cybercriminals During Covid-19
Malwarebytes, an American security firm announced the findings of its annual ‘State of Malware’ report, this report explored the
Read more
Alert for Smart Phone Users, How Their Data is Extracted by Apps Via Location Tracking
With more mobile apps entering the new world of smartphone users, only a few know about the dangers of
Read more
Chinese Hackers Cloned Exploit Tool Belonging to NSA
A Chinese hacking group allegedly “cloned” and deployed a zero-day exploit created by the U.S. National Security Agency’s Equation
Read more
FIN11 cybercrime group is behind recent wave of attacks on FTA servers
FireEye experts linked a series of attacks targeting Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka
Read more
NurseryCam daycare cam service shut down after security breach
Daycare camera product NurseryCam was hacked last week, the company was forced to shut down its IoT camera service. On
Read more
Ukraine sites suffered massive attacks launched from Russian networks
Ukraine ‘s government accused unnamed Russian traffic networks as the source of massive attacks on Ukrainian security and defense websites.
Read more
Georgetown County has yet to recover from a sophisticated cyber attack
The systems of Georgetown County have been hacked at the end of January, and the county staff is still working
Read more
A week in security (February 15 – February 21)
Last week on Malwarebytes Labs, the spotlight fell on the State of Malware 2021 report, wherein we have seen cyberthreats
Read more
Fraudsters are Exploiting Google Apps to Steal Credit Card Details
Threat actors are using a novel approach to steal the credit card details of e-commerce shoppers by exploiting Google’s
Read more
US Agencies Publish Advisory on North Korean Cryptocurrency Malware, AppleJeus
The Federal Bureau of Investigation (FBI) jointly with the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of
Read more
How to Combat Alert Fatigue With Cloud-Based SIEM Tools
Today’s security teams are facing more complexity than ever before. IT environments are changing and expanding rapidly, resulting in proliferating
Read more
NSA Equation Group tool was used by Chinese hackers years before it was leaked online
The Chinese APT group had access to an NSA Equation Group, NSA hacking tool and used it years before it
Read more
An attacker was able to siphon audio feeds from multiple Clubhouse rooms
An attacker demonstrated this week that Clubhouse chats are not secure, he was able to siphon audio feeds from “multiple
Read more
Researchers uncovered a new Malware Builder dubbed APOMacroSploit
Researchers spotted a new Office malware builder, tracked as APOMacroSploit, that was employed in a campaign targeting more than 80
Read more
Experts warn of threat actors abusing Google Alerts to deliver unwanted programs
Experts warn of threat actors using Google Alerts to promote a fake Adobe Flash Player updater that delivers unwanted programs.
Read more