Double header: IsaacWiper and CaddyWiper
As war in Ukraine rages, new destructive malware continues to be discovered. In this short blog post, we will review...
News
China-linked threat actors are targeting the government of Ukraine
Google’s TAG team revealed that China-linked APT groups are targeting Ukraine ’s government for intelligence purposes. Google’s Threat Analysis Group...
How to protect RDP
You didn’t really think that the ransomware wave was coming to an end, did you? You may be tempted to...
Caketap, a new Unix rootkit used to siphon ATM banking data
Experts spotted a new Unix rootkit, called Caketap, that was used to steal ATM banking data. Mandiant researchers discovered a...
Online Safety Bill’s provisions for “legal but harmful” content described as “censor’s charter”
The UK’s Online Safety Bill, a landmark piece of legislation that that aims to regulate the country’s online content, has...
Deepfake Zelenskyy video surfaces on compromised websites
It’s been a long time coming. The worry over deepfake technology being used during times of major upheaval has been...
Red TIM Research (RTR) team discovers a bug on Ericsson Network Manager
TIM Red Team Research (RTR) researchers discovered a new flaw on Ericsson Network Manager, aka Ericsson flagship network product. TIM...
Russia-linked Cyclops Blink botnet targeting ASUS routers
The recently discovered Cyclops Blink botnet, which is believed to be a replacement for the VPNFilter botnet, is now targeting the ASUS...
Microsoft releases open-source tool for checking MikroTik Routers compromise
Microsoft released an open-source tool to secure MikroTik routers and check for indicators of compromise for Trickbot malware infections. Microsoft...
node-ipc NPM Package sabotage to protest Ukraine invasion
The developer behind the popular “node-ipc” NPM package uploaded a destructive version to protest Russia’s invasion of Ukraine. RIAEvangelist, the...
Cyclops Blink Sets Sights on Asus Routers
This report discusses the technical capabilities of this Cyclops Blink malware variant that targets ASUS routers and includes a list...
Attacks Abound in Tricky Threat Terrain: 2021 Annual Cybersecurity Report
The digital transformations that had enabled many enterprises to stay afloat amid the Covid-19 health crisis also brought about major...
Anonymous continues to support Ukraine against the Russia
The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and...
SolarWinds Warns of Attacks Targeting Web Help Desk Users
SolarWinds warns customers of potential cyberattacks targeting unpatched installs of its Web Help Desk (WHD) product. SolarWinds has published a...
Gh0stCringe RAT makes database servers squeal for protection
Researchers have found that the Gh0stCringe RAT is infecting Microsoft SQL and MySQL, and seems to focus on servers with...
Clouding the issue: what cloud threats lie in wait in 2022?
As more services move ever cloud-wards, so too do thoughts by attackers as to how best exploit them. With all...
Ukraine SBU arrested a hacker who supported Russia during the invasion
The Security Service of Ukraine (SBU) announced the arrest of a “hacker” who helped Russian Army during the invasion. The...
FBI catches up with one of its Most Wanted, arrests head of advance-fee crime network
Some don’t mind putting extra effort into making their crime appear as legitimate as possible by perpetuating more lies as...
B1txor20 Linux botnet use DNS Tunnel and Log4J exploit
Researchers uncovered a new Linux botnet, tracked as B1txor20, that exploits the Log4J vulnerability and DNS tunnel. Researchers from Qihoo...
Russia’s disinformation uses deepfake video of Zelenskyy telling people to lay down arms
Russian disinformation continues, this time it used a deepfake video of Zelenskyy inviting Ukrainians to ‘lay down arms.’ A deepfake...
CISA adds 15 new flaws to the Known Exploited Vulnerabilities Catalog
The US Cybersecurity and Infrastructure Security Agency (CISA) added 15 new flaws to its Known Exploited Vulnerabilities Catalog. The U.S....
“Threatening and coercive” cold-callers who targeted the elderly hit with big fines
Every so often, fines hit the news as a result of phone/communication spam. Much of it targets older members of...
CafePress faces $500,000 fine for data breach cover up
The US Federal Trade Commission (FTC) has announced that it took action against online customized merchandise platform CafePress over allegations...
Russia-linked threats actors exploited default MFA protocol and PrintNightmare bug to compromise NGO cloud
FBI and CISA warn Russia-linked threats actors gained access to an NGO cloud after enrolling their own device in the...
