Google warns some users that FancyBear’s been prowling around
APT28, also known as FancyBear, is at the heart of another targeted campaign. This time, it’s sniffing around users of...
News
A week in security (Oct 4 – Oct 10)
Last week on Malwarebytes Labs Does Cybersecurity Awareness Month actually improve security?Police take a piece out of a ransomware gang,...
NSA explains how to avoid dangers of Wildcard TLS Certificates and ALPACA attacks
The NSA issued a technical advisory to warn organizations against the use of wildcard TLS certificates and the new ALPACA...
Medtronic recalls some controllers used with some of its insulin pumps over cyberattack risks
Medical device maker Medtronic recalled the remote controllers used with some of its insulin pumps because of dangerous vulnerabilities. Medical device maker...
Security Affairs newsletter Round 335
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Previously undetected FontOnLake Linux malware used in targeted attacks
ESET researchers spotted a previously unknown, modular Linux malware, dubbed FontOnLake, that has been employed in targeted attacks. ESET researchers...
Google addresses four high-severity flaws in Chrome
Google has addressed a total of four high-severity vulnerabilities in the Chrome version for Windows, Mac, and Linux. Google released...
Security expert published NMAP script for Apache CVE-2021-41773 vulnerability
Security expert Dhiraj Mishra published an NMAP script for the CVE-2021-41773 Path Traversal vulnerability affecting Apache Web Server version 2.4.49. Security...
Sky.com servers exposed via misconfiguration
CyberNews researchers found an exposed configuration file hosted on a Sky.com subdomain containing production data. Original post @ https://cybernews.com/news/sky-com-servers-exposed-via-misconfiguration/ CyberNews...
Cox Media Group took down broadcasts after a ransomware attack
American media conglomerate Cox Media Group (CMG) was hit by a ransomware attack that took down live TV and radio...
Firefox reveals sponsored ad “suggestions” in search and address bar
Mozilla is trying a novel experiment into striking a balance between ad revenue generation and privacy protection by implementing a...
58% of all nation-state attacks in the last year were launched by Russian nation-state actors
Microsoft revealed that Russia-linked cyberespionage groups are behind the majority of the nation-state cyber attacks on US government agencies. Microsoft...
At long last, Microsoft is disabling Excel 4.0 macros by default
Sometimes good news in the security world comes unexpectedly. This is one of those times. After three decades of macro...
The Netherlands declares war on ransomware operations
The Dutch government will not tolerate ransomware attacks that could threaten national security, it will use intelligence or military services...
Making better cybersecurity training: Q&A with Malwarebytes expert Kelsey Prichard
If you hadn’t noticed by now, we are in the first week of National Cybersecurity Awareness Month, which, according to...
Google warns of APT28 attack attempts against 14,000 Gmail users
Google warned more than 14,000 Gmail users that they have been the target of nation-state spear-phishing campaigns. On Wednesday, Google...
Discord scammers lure victims with promise of free Nitro subscriptions
A number of bogus offers are doing the rounds in Discord land at the moment. Discord, a group text chat/VoiP...
GnuPG fixes a problem with Let’s Encrypt certificate chain validation
Despite advance warnings that a root certificate provided by Let’s Encrypt would expire on September 30, users reported issues with...
Apache rolled out a new update in a few days to fix incomplete patch for an actively exploited flaw
Apache Software Foundation has released HTTP Web Server 2.4.51 to completely address a vulnerability that has been actively exploited in...
Ransomware in the CIS
Introduction These days, when speaking of cyberthreats, most people have in mind ransomware, specifically cryptomalware. In 2020–2021, with the outbreak...
FIN12 ransomware gang don’t implement double extortion to prioritize speed
Researchers detailed the activities of the FIN12 ransomware group that earned million of dollars over the past years. Researchers from...
US Navy ship Facebook page hijacked to stream video games
The official Facebook page of the US Navy’s destroyer-class warship, USS Kidd, has been hijacked. According to Task & Purpose,...
PoC exploit for 2 flaws in Dahua cameras leaked online
A proof of concept exploit for two authentication bypass vulnerabilities in Dahua cameras is available online, users are recommended to...
Stop. Do you really need another security tool?
The last few years have seen a mushrooming of the number and type of security tools that organizations can use...
