Moobot botnet spreads by exploiting CVE-2021-36260 flaw in Hikvision products
Moobot is a Mirai-based botnet that is leveraging a critical command injection vulnerability in the webserver of some Hikvision products....
News
Microsoft Vancouver leaking website credentials via overlooked DS_STORE file
CyberNews researchers discovered a Desktop Services Store (DS_STORE) file left on a publicly accessible web server that belongs to Microsoft...
SonicWall strongly urges customers to apply patches to SMA 100 devices
SonicWall strongly urges customers using SMA 100 series appliances to install security patches that address multiple security flaws, some of...
CS Energy foiled a ransomware attack
A cyberattack hit CS Energy in Australia on Saturday, November 27, experts believe the attack was orchestrated by Chinese hackers....
Vulnerability in Windows 10 URI handler leads to remote code execution
Researchers at Positive Security have discovered a drive-by remote code-execution (RCE) bug in Windows 10. The vulnerability can be triggered...
Was threat actor KAX17 de-anonymizing the Tor network?
A mysterious threat actor has run thousands of malicious servers in entry, middle, and exit positions of the Tor network....
Emotet directly drops Cobalt Strike beacons without intermediate Trojans
The Emotet malware continues to evolve, in the latest attacks, it directly installs Cobalt Strike beacons to give the attackers...
The story of the year: ransomware in the headlines
In the past twelve months, the word “ransomware” has popped up in countless headlines worldwide across both print and digital...
Is your web browser vulnerable to data theft? XS-Leak explained
In recent news, IT security researchers from Ruhr-Universität Bochum (RUB) and the Niederrhein University of Applied Sciences have disclosed 14...
Google disrupts the Glupteba botnet
Google announced to have disrupted the Glupteba botnet, a huge infrastructure composed of more than 1 million Windows PCs worldwide....
Bitcoin Miner [oom_reaper] targets QNAP NAS devices
Taiwanese vendor QNAP warns customers of ongoing attacks targeting their NAS devices with cryptocurrency miners. Taiwanese vendor QNAP warns customers...
A chink in the armor of China-based hacking group Nickel
Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets....
How to check for Windows updates and install them
Keeping Windows up to date is an important part of warding off malware, exploits, and other attacks. If you’re not...
Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group
Microsoft seized dozens of malicious domains used by the China-linked APT15 group to target organizations worldwide. Microsoft announced to have obtained...
Nobelium continues to target organizations worldwide with custom malware
Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. Mandiant researchers have...
Nobelium APT targets French orgs, French ANSSI agency warns
The French cyber-security agency ANSSI said that the Russia-linked Nobelium APT group has been targeting French organizations since February 2021....
US-CERT Bulletin (SB21-340):Vulnerability Summary for the Week of November 29, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
330 SPAR stores close or switch to cash-only payments after a cyberattack
A cyber attack hit the international supermarket franchise SPAR forcing 330 shops in North East England to shut down. A...
Why Macs are the best, according to Mac expert Thomas Reed: Lock and Code S02E23
In the year 2021, the war for computer superiority has a clear winner, and it is the Macintosh, by Apple....
DMEA Colorado electric utility hit by a disruptive cyberattack
A ransomware attack hit an electric utility in Colorado causing a significant disruption and damage. The Delta-Montrose Electric Association (DMEA)...
NSO Group spyware found on iPhones of US State Department employees
iPhones of at least nine US State Department employees are said to have been hacked using the Pegasus spyware developed...
Threat actors stole more than $150 million worth of cryptocurrency tokens from BitMart platform
Threat actors stole more than $150 million in various cryptocurrencies from the cryptocurrency trading platform BitMart. Cryptocurrency trading platform BitMart...
A week in security (Nov 29 – Dec 5)
Last week on Malwarebytes Labs: CronRAT targets Linux servers with e-commerce attacksHackers all over the world are targeting Tasmania’s emergency...
Hackers are sending receipts with anti-work messages to businesses’ printers
Hackers are targeting printers of businesses around the world to print ‘anti-work’ slogans pushing workers to demand better pay. Multiple...
