Ransomware review: December 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites. In…
Author: Cybernoz
Proof-of-concept code published for Apache Struts vulnerability – Security
A critical vulnerability in Apache Struts could have widespread downstream impacts on vendors that use the framework to build web apps like configuration interfaces. The…
LockBit ransomware now poaching BlackCat, NoEscape affiliates
The LockBit ransomware operation is now recruiting affiliates and developers from the BlackCat/ALPHV and NoEscape after recent disruptions and exit scams. Last week, the NoEscape…
The sound of you typing on your keyboard could reveal your password
As if password authentication’s coffin needed any more nails, researchers in the UK have discovered yet another way to hammer one in. The technique, developed…
Russian hackers target TeamCity servers since September
CISA and partner cybersecurity agencies and intelligence services warned that the APT29 hacking group linked to Russia’s Foreign Intelligence Service (SVR) has been targeting unpatched TeamCity…
Dutch Watchdog Sues Adobe Over Mass Collection of Citizen Data
Dutch privacy watchdog SDBN alleges that Adobe is spying on and collecting data from ‘virtually every Dutch internet user’ through the illegal placement of tracking…
Malvertisers zoom in on cryptocurrencies and initial access
During the past month, we have observed an increase in the number of malicious ads on Google searches for “Zoom”, the popular piece of video…
UK Home Office is ignoring the risk of ‘catastrophic ransomware attacks,’ report warns
UK Home Office is ignoring the risk of ‘catastrophic ransomware attacks,’ report warns Pierluigi Paganini December 13, 2023 A Joint Committee on the National Security…
New cybercrime market ‘OLVX’ gains popularity among hackers
A new cybercrime marketplace, OLVX, has emerged and is quickly gaining new customers looking to purchase tools to conduct online fraud and cyberattacks. OLVX follows…
Ukraine’s Cyberattack Cripples Russia’s Tax System
According to Ukrainian intelligence, its cybersecurity experts have destroyed databases and backups used by the Russian tax authorities. The Ukrainian military’s Main Directorate of Intelligence…
Microsoft patches 34 vulnerabilities, including one zero-day
December’s Patch Tuesday is a relatively quiet one on the Microsoft front. Redmond has patched 34 vulnerabilities with only four rated as critical. One vulnerability,…
BazaCall Phishing Scammers Now Leveraging Google Forms for Deception
Dec 13, 2023NewsroomCyber Threat / Phishing Attack The threat actors behind the BazaCall call back phishing attacks have been observed leveraging Google Forms to lend…