Play the Opera Please – Opera patches a flaw in their turbo servers
Opera released a mini patch for a vulnerability in their turbo servers that dates back to 2018. Prior approval are...
News
New EwDoor Botnet is targeting AT&T customers
360 Netlab experts spotted a new botnet dubbed EwDoor that infects unpatched AT&T enterprise network edge devices. Experts from Qihoo 360’s...
Massive faceprint scraping company Clearview AI hauled over the coals
Life must be hard for companies that try to make a living by invading people’s privacy. You almost feel sorry...
Critical Printing Shellz flaws impact 150 HP multifunction printer models
Researchers discovered a critical wormable buffer overflow vulnerability that affects 150 different HP multifunction printer models (MFPs). Cybersecurity researchers from...
WIRTE APT group targets the Middle East since at least 2019
A threat actor named WIRTE targets government, diplomatic entities, military organizations, law firms, and financial institutions in Middle East. Cybersecurity...
4 Android banking trojans were spread via Google Play infecting 300.000+ devices
Experts found four Android banking trojans that were available on the official Google Play Store and that infected +300,000 devices....
ScarCruft surveilling North Korean defectors and human rights activists
The ScarCruft group (also known as APT37 or Temp.Reaper) is a nation-state sponsored APT actor we first reported in 2016....
WIRTE’s campaign in the Middle East ‘living off the land’ since at least 2019
Overview This February, during our hunting efforts for threat actors using VBS/VBA implants, we came across MS Excel droppers that...
Google experts found 2 flaws in video conferencing software Zoom
Google Project Zero researchers have discovered two vulnerabilities in the video conferencing software Zoom that expose users to attacks. Security...
US-CERT Bulletin (SB21-333):Vulnerability Summary for the Week of November 22, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Panasonic confirmed that its network was illegally accessed by attackers
Panasonic disclosed a security breach after threat actors gained access to its servers storing potentially sensitive information. Japanese electronics giant...
Experts warn of attacks exploiting CVE-2021-40438 flaw in Apache HTTP Server
Threat actors are exploiting the recently patched CVE-2021-40438 flaw in Apache HTTP servers, warns German Cybersecurity Agency and Cisco. Threat...
Hackers all over the world are targeting Tasmania’s emergency services
Emergency services—under which the police, fire, and emergency medical services departments fall—is an infrastructure vital to any country or state....
CronRAT targets Linux servers with e-commerce attacks
There’s an interesting find over at the Sansec blog, wrapping time and date manipulation up with a very smart RAT...
Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition
Biopharmaceutical company Supernus Pharmaceuticals discloses a ransomware attack, the Hive ransomware claims to have stolen company data. Biopharmaceutical company Supernus...
A week in security (Nov 22 – Nov 28)
Last week on Malwarebytes Labs How to defend your website against card skimmersSecurity researchers play peek-a-boo with Conti ransomware serverWindows...
Israel cut cyber export list, excluding totalitarian regimes
Israel’s Ministry of Defense bans the sale of surveillance software and offensive hacking tools to tens of countries. Israel’s Ministry...
French court indicted Nexa Technologies for complicity in acts of torture
Nexa Technologies was indicted for complicity in acts of torture, the French firm is accused of having sold surveillance equipment...
RATDispenser, a new stealthy JavaScript loader used to distribute RATs
RATDispenser is a new stealthy JavaScript loader that is being used to spread multiple remote access trojans (RATs) into the...
North Korea-linked Zinc group posed as Samsung recruiters to target security firms
North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms....
0patch releases unofficial patches for CVE-2021-24084 Windows 10 zero-day
0patch released free unofficial patches for Windows local privilege escalation zero-day (CVE-2021-24084) in Windows 10, version 1809 and later. 0patch...
Security Affairs newsletter Round 342
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisition
Italy’s antitrust regulator, Autorità Garante della Concorrenza e del Mercato (AGCM), has fined Apple and Google €10 million each their...
HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes
HAEICHI-II: Interpol arrested 1,003 individuals charged for several cybercrimes, including romance scams, investment frauds, and online money laundering. Interpol has...
