The missed link between Ransom Cartel and REvil ransomware gangs
Researchers at Palo Alto Network’s Unit 42 linked the Ransom Cartel ransomware operation to the REvil ransomware operations. Researchers at...
News
Microsoft Office 365 Message Encryption (OME) doesn’t ensure confidentiality
A bug in the message encryption mechanism used by Microsoft in Office 365 can allow to access the contents of the...
Software Patch Management Policy Best Practices
Explore the top risk-based patch management policy best practices to mitigate the growing threat of vulnerability exploits in your organization....
US-CERT Bulletin (SB22-290):Vulnerability Summary for the Week of October 10, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Law enforcement arrested 31 suspects for stealing cars by hacking key fobs
An international law enforcement operation led by Europol disrupted a cybercrime ring focused on hacking wireless key fobs to steal...
China-linked APT41 group targets Hong Kong with Spyder Loader
China-linked threat actors APT41 (a.k.a. Winnti) targeted organizations in Hong Kong, in some cases remaining undetected for a year. Symantec...
Critical Remote Code Execution issue impacts popular post-exploitation toolkit Cobalt Strike
HelpSystems, the company that developed the Cobalt Strike platform, addressed a critical remote code execution vulnerability in its software. HelpSystems,...
Over 17000 Fortinet devices exposed online are very likely vulnerable to CVE-2022-40684
Fortinet confirmed that many systems are still vulnerable to attacks exploiting the CVE-2022-40684 zero-day vulnerability. Fortinet is urging customers to address...
CVE-2022-28762: Zoom for macOS contains a debugging port misconfiguration
Video messaging company Zoom fixed a high-severity vulnerability, tracked as CVE-2022-28762, in Zoom Client for Meetings for macOS. Zoom Client...
DiceyF deploys GamePlayerFramework in online casino development studio
The Hacktivity 2022 security festival was held at the MOM Cultural Center in Budapest, Hungary, over two days, October 6-7th...
Retail giant Woolworths discloses data breach of MyDeal online marketplace
Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million MyDeal customers. Bad news for the customers...
New UEFI rootkit Black Lotus offered for sale at $5,000
Black Lotus is a new, powerful Windows UEFI rootkit advertised on underground criminal forums, researcher warns. Cybersecurity researcher Scott Scheferman...
Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted
The IT infrastructure of the Japanese tech company Oomiya was infected with the LockBit 3.0 ransomware. One of the affiliates...
Bulgaria hit by a cyber attack originating from Russia
Government institutions in Bulgaria have been hit by a cyber attack during the weekend, experts believe it was launched by...
Interpol arrested 75 members of the cybercrime ring Black Axe
Interpol has announced the arrests of 75 individuals as part of a coordinated international operation against an organized cybercrime ring...
45,654 VMware ESXi servers reached End of Life on Oct. 15
Lansweeper warns that over 45,000 VMware ESXi servers exposed online have reached end-of-life (EOL), making them an easy target for...
Mysterious Prestige ransomware targets organizations in Ukraine and Poland
Microsoft warns that new Prestige ransomware is targeting transportation and logistics organizations in Ukraine and Poland. Microsoft reported that new...
Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug
Threat actors have compromised hundreds of servers exploiting critical flaw CVE-2022-41352 in Zimbra Collaboration Suite (ZCS). Last week, researchers from...
Security Affairs newsletter Round 389
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
New PHP Version of Ducktail info-stealer hijacks Facebook Business accounts
Experts spotted a PHP version of an information-stealing malware called Ducktail spread as cracked installers for legitimate apps and games. Zscaler researchers...
Palo Alto Networks fixed a high-severity auth bypass flaw in PAN-OS
Palo Alto Networks addressed a high-severity authentication bypass vulnerability affecting the PAN-OS 8.1 software. Palo Alto Networks released security patches...
Indian power generation giant Tata Power hit by a cyber attack
Tata Power Company Limited, India’s largest power generation company, announced it was hit by a cyberattack. Tata Power on Friday announced...
Experts disclose technical details of now-patched CVE-2022-37969 Windows Zero-Day
Researchers disclosed details of a now-patched flaw, tracked as CVE-2022-37969, in Windows Common Log File System (CLFS). The CVE-2022-37969 (CVSS score:...
WIP19, a new Chinese APT targets IT Service Providers and Telcos
Chinese-speaking threat actor, tracked as WIP19, is targeting telecommunications and IT service providers in the Middle East and Asia. SentinelOne researchers...
