Collaborate Disseminate
Nothing like zombie campaigns: WannaCry’s old as dirt, and GandCrab threw in the towel years ago. They’re on auto-pilot at this point, researchers say. Continue reading Creaky Old WannaCry, GandCrab Top the Ransomware Scene
The overall number of attacks on mobile users is down, but they’re getting slicker, both in terms of malware functionality and vectors, researchers say. Continue reading Gaming, Banking Trojans Dominate Mobile Malware Scene
Adobe updated its recent out-of-band security advisory to add another critical bug, while researchers put out a PoC for the one it emergency-fixed last weekend. Continue reading New Critical RCE Bug Found in Adobe Commerce, Magento
Kraken has already spread like wildfire, but in the past few months, the malware’s author has been tinkering away, adding more infostealers and backdoors. Continue reading Baby Golang-Based Botnet Already Pulling in $3K/Month for Operators
When it comes to ensuring safe cloud app rollouts, there’s flat-out animosity between business shareholders. HackerOne’s Alex Rice and GitLab’s Johnathan Hunt share tips on quashing all the squabbling. Continue reading Kill Cloud Risk: Get Everybody to Stop Fighting Over App Security – Podcast
On the plus side, only instances with non-standard not recommended configurations are vulnerable. On the downside, those configurations aren’t easy to track down, and it’s easy as pie to exploit.
Continue reading High-Severity RCE Bug Found in Popular Apache Cassandra Database
Researchers have never before seen SquirrelWaffle attackers use typosquatting to keep sending spam once a targeted Exchange server has been patched for ProxyLogon/ProxyShell. Continue reading SquirrelWaffle Adds a Twist of Fraud to Exchange Server Malspamming
The year’s 1st Chrome zero-day can lead to all sorts of misery, ranging from data corruption to the execution of arbitrary code on vulnerable systems. Continue reading Chrome Zero-Day Under Active Attack: Patch ASAP
Hours before the Superbowl and two days after the FBI warned about the ransomware gang, BlackByte leaked what are purportedly the NFL team’s files.
Continue reading BlackByte Tackles the SF 49ers & US Critical Infrastructure
35K+ players were exposed to an auto-updater that planted a trojan that choked performance for fellow modders and Colossal Order employees.
Continue reading ‘Cities: Skylines’ Gaming Modder Banned Over Hidden Malware