Oracle Critical Patch Update for January 2022 will fix 483 new flaws
The pre-release announcement for Critical Patch Update (CPU) for January 2022 states that Oracle will fix 483 new flaws. This...
News
Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques
Our technical brief provides an in-depth look at Earth Lusca’s activities, the tools it employs in attacks, and the infrastructure...
US-CERT Bulletin (SB22-017):Vulnerability Summary for the Week of January 10, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Zoho fixes a critical vulnerability (CVE-2021-44757) in Desktop Central solutions
Zoho addressed a new critical severity flaw (CVE-2021-44757) that affects its Desktop Central and Desktop Central MSP unified endpoint management...
REvil ransomware gang busted by Russian Federal Security Service
Eight members of the REvil ransomware group have been arrested in Russia and will be pressed with criminal charges. Russia’s...
High-Severity flaw in 3 WordPress plugins impacts 84,000 websites
Researchers discovered a high-severity vulnerability in three different WordPress plugins that impact over 84,000 websites. Researchers from WordPress security company...
A week in security (January 10 – 16)
Last week on Malwarebytes Labs: Ransomware cyberattack forces New Mexico jail to lock downSome Android users can disable 2G now...
Experts warn of attacks using a new Linux variant of SFile ransomware
The operators of the SFile ransomware (aka Escal) have developed a Linux version of their malware to expand their operations....
Kyiv blames Belarus-linked APT UNC1151 for recent cyberattack
Ukrainian government attributes the recent attacks against tens of Ukrainian government websites to Belarusian APT group UNC1151. The government of...
European Union simulated a cyber attack on a fictitious Finnish power company
The European Union simulated a cyber attack on a fictitious Finnish power company to test its cyber-defense capabilities. Cyber drills...
Microsoft spotted a destructive malware campaign targeting Ukraine
Microsoft spotted a new destructive malware operation targeting government, non-profit, and IT entities in Ukraine. Microsoft spotted a destructive attack...
A new wave of Qlocker ransomware attacks targets QNAP NAS devices
QNAP NAS devices are under attack, experts warn of a new Qlocker ransomware campaign that hit devices worldwide. A new...
Security Affairs newsletter Round 349
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Threat actors stole $18.7M from the Lympo NTF platform
Threat actors hacked the hot wallet of the NFT platform Lympo and managed to steal 165.2 Million LMT (worth $18.7...
Cybersecurity for Industrial Control Systems: Part 1
In this two-part series, we look into various cybersecurity threats that affected industrial control systems endpoints. We also discuss several...
Prominent Carding Marketplace UniCC announced it’s shutting down
One of the biggest underground carding marketplaces, UniCC, announced it’s shutting down its operations. UniCC, one of the biggest underground...
One of the REvil members arrested by FSB was behind Colonial Pipeline attack
A senior Biden administration official said that the one of the Russian hacker arrested by FSB was behind the Colonial...
Threat actors defaced Ukrainian government websites
Threat actors defaced multiple Ukrainian government websites after talks between Ukrainian, US, and Russian officials hit a dead this week. Threat...
Analyzing an Old Bug and Discovering CVE-2021-30995
A vulnerability found in 2021 has been patched and re-patched in the months since it was reported. We analyze the...
Codex Exposed: How Low Is Too Low When We Generate Code?
In a series of blog posts, we explore different aspects of Codex and assess its capabilities with a focus on...
Lorenz ransomware gang stolen files from defense contractor Hensoldt
German multinational defense contractor Hensoldt confirmed to that some of its systems were infected by Lorenz ransomware. Hensoldt, a multinational...
Russian government claims to have dismantled REvil ransomware gang
Russia’s FSB announced to have dismantled the REvil ransomware gang, the infamous group behind Kaseya and JBS USA. The Russian...
North Korea-linked APT BlueNoroff focuses on crypto theft
The North Korea-linked APT group BlueNoroff has been spotted targeting cryptocurrency startups with fake MetaMask browser extensions. The North Korea-linked...
Ukrainian police arrested Ransomware gang behind attacks on 50 companies
Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. and Europe. Ukrainian...
