πŸ”’
There are new articles available, click to refresh the page.
Before yesterdayGeneral Security News

Italy's Antitrust Regulator Fines Google and Apple for "Aggressive" Data Practices

27 November 2021 at 06:34
Italy's antitrust regulator has fined both Apple and Google €10 million each for what it calls are "aggressive" data practices and for not providing consumers with clear information on commercial uses of their personal data during the account creation phase. The AutoritΓ  Garante della Concorrenza e del Mercato (AGCM)Β saidΒ "Google and Apple did not provide clear and immediate information on the

Hackers Targeting Biomanufacturing Facilities With Tardigrade Malware

26 November 2021 at 13:20
An advanced persistent threat (APT) has been linked to cyberattacks on two biomanufacturing companies that occurred this year with the help of a custom malware loader called "Tardigrade." That's according to an advisory published by Bioeconomy Information Sharing and Analysis Center (BIO-ISAC) this week, which noted that the malware is actively spreading across the sector with the likely goal of

Crypto Hackers Using Babadeda Crypter to Make Their Malware Undetectable

26 November 2021 at 10:32
A new malware campaign has been discovered targeting cryptocurrency, non-fungible token (NFT), andΒ DeFiΒ aficionados through Discord channels to deploy a crypter named "Babadeda" that's capable of bypassing antivirus solutions and stage a variety of attacks. "[T]his malware installer has been used in a variety of recent campaigns to deliver information stealers, RATs, and even LockBit ransomware,

CronRAT: A New Linux Malware That’s Scheduled to Run on February 31st

26 November 2021 at 08:08
Researchers have unearthed a new remote access trojan (RAT) for Linux that employs a never-before-seen stealth technique that involves masking its malicious actions by scheduling them for execution on February 31st, a non-existent calendar day. Dubbed CronRAT, the sneaky malware "enablesΒ server-side Magecart data theftΒ which bypasses browser-based security solutions," Sansec Threat Research said

Israel Bans Sales of Hacking and Surveillance Tools to 65 Countries

26 November 2021 at 05:10
Israel's Ministry of Defense has dramatically restricted the number of countries to which cybersecurity firms in the country are allowed to sell offensive hacking and surveillance tools to, cutting off 65 nations from the export list. The revised list, details of which were first reported by the Israeli business newspaperΒ Calcalist, now only includes 37 countries, down from the previous 102:

This New Stealthy JavaScript Loader Infecting Computers with Malware

25 November 2021 at 11:57
Threat actors have been found using a previously undocumented JavaScript malware strain that functions as a loader to distribute an array of remote access Trojans (RATs) and information stealers. HP Threat Research dubbed the new, evasive loader "RATDispenser," with the malware responsible for deploying at least eight different malware families in 2021. Around 155 samples of this new malware

Hackers Using Microsoft MSHTML Flaw to Spy on Targeted PCs with Malware

25 November 2021 at 11:33
A new Iranian threat actor has been discovered exploiting a now-addressed critical flaw in the Microsoft Windows MSHTML platform to target Farsi-speaking victims with a new PowerShell-based information stealer designed to harvest extensive details from infected machines. "[T]he stealer is a PowerShell script, short with powerful collection capabilities β€” in only ~150 lines, it provides the

Warning β€” Hackers Exploiting New Windows Installer Zero-Day Exploit in the Wild

25 November 2021 at 08:10
Attackers are actively making efforts to exploit a new variant of a recently disclosed privilege escalation vulnerability to potentially execute arbitrary code on fully-patched systems, once again demonstrating how adversaries move quickly to weaponize a publicly available exploit. Cisco TalosΒ disclosedΒ that it "detected malware samples in the wild that are attempting to take advantage of this

VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client

25 November 2021 at 05:09
VMware has shipped updates to address two security vulnerabilities in vCenter Server and Cloud Foundation that could be abused by a remote attacker to gain access to sensitive information. The more severe of the issues concerns an arbitrary file read vulnerability in the vSphere Web Client. Tracked as CVE-2021-21980, the bug has been rated 7.5 out of a maximum of 10 on the CVSS scoring system,

Eavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally

24 November 2021 at 12:25
Multiple security weaknesses have been disclosed in MediaTek system-on-chips (SoCs) that could have enabled a threat actor to elevate privileges and execute arbitrary code in the firmware of the audio processor, effectively allowing the attackers to carry out a "massive eavesdrop campaign" without the users' knowledge. The discovery of the flaws is the result of reverse-engineering the Taiwanese

APT C-23 Hackers Using New Android Spyware Variant to Target Middle East Users

24 November 2021 at 08:49
A threat actor known for striking targets in the Middle East has evolved its Android spyware yet again with enhanced capabilities that allow it to be stealthier and more persistent while passing off as seemingly innocuous app updates to stay under the radar. The new variants have "incorporated new features into their malicious apps that make them more resilient to actions by users, who might try

Over 9 Million Android Phones Running Malware Apps from Huawei's AppGallery

24 November 2021 at 07:40
At least 9.3 million Android devices have been infected by a new class of malware that disguises itself as dozens of arcade, shooter, and strategy games on Huawei's AppGallery marketplace to steal device information and victims' mobile phone numbers. The mobile campaign was disclosed by researchers from Doctor Web, who classified the trojan as "Android.Cynos.7.origin," owing to the fact that the

Apple Sues Israel's NSO Group for Spying on iPhone Users With Pegasus Spyware

24 November 2021 at 05:32
Apple has sued NSO Group and its parent company Q Cyber Technologies in a U.S. federal court holding it accountable for illegally targeting users with its Pegasus surveillance tool, marking yet another setback for the Israeli spyware vendor. The Cupertino-based tech giant painted NSO Group as "notorious hackers β€” amoral 21st century mercenaries who have created highly sophisticated

Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox

23 November 2021 at 12:06
A now-patched vulnerability affecting Oracle VM VirtualBox could be potentially exploited by an adversary to compromise the hypervisor and cause a denial-of-service (DoS) condition. "Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox," the advisoryΒ reads. "Successful attacks of

More Stealthier Version of BrazKing Android Malware Spotted in the Wild

23 November 2021 at 10:58
Banking apps from Brazil are being targeted by a more elusive and stealthier version of an Android remote access trojan (RAT) that's capable of carrying out financial fraud attacks by stealing two-factor authentication (2FA) codes and initiating rogue transactions from infected devices to transfer money from victims' accounts to an account operated by the threat actor. IBM X-Force dubbed the

GoDaddy Data Breach Exposes Over 1 Million WordPress Customers' Data

23 November 2021 at 07:39
Web hosting giant GoDaddy on Monday disclosed a data breach that resulted in the unauthorized access of data belonging to a total of 1.2 million active and inactive customers, making it theΒ thirdΒ security incidentΒ to come to light since 2018. In a filing with the U.S. Securities and Exchange Commission (SEC), the world's largest domain registrarΒ saidΒ that a malicious third-party managed to gain

New Golang-based Linux Malware Targeting eCommerce Websites

22 November 2021 at 12:10
Weaknesses in e-commerce portals are being exploited to deploy a Linux backdoor as well as a credit card skimmer that's capable of stealing payment information from compromised websites. "The attacker started with automated e-commerce attack probes, testing for dozens of weaknesses in common online store platforms," researchers from Sansec Threat ResearchΒ saidΒ in an analysis. "After a day and a

Hackers Exploiting ProxyLogon and ProxyShell Flaws in Spam Campaigns

22 November 2021 at 11:47
Threat actors are exploiting ProxyLogon and ProxyShell exploits in unpatched Microsoft Exchange Servers as part of an ongoing spam campaign that leverages stolen email chains to bypass security software and deploy malware on vulnerable systems. The findings come from Trend Micro following an investigation into a number of intrusions in the Middle East that culminated in the distribution of a

Facebook Postpones Plans for E2E Encryption in Messenger, Instagram Until 2023

22 November 2021 at 07:30
Meta, the parent company of Facebook, Instagram, and WhatsApp, disclosed that it doesn't intend to roll out default end-to-end encryption (E2EE) across all its messaging services until 2023, pushing its original plans by at least a year. "We're taking our time to get this right and we don't plan to finish the global rollout of end-to-end encryption by default across all our messaging services
❌