DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner
The DreamBus botnet has resurfaced after a two-year break and it has been seen exploiting a recently patched Apache RocketMQ vulnerability in attacks whose goal…
Category: SecurityWeek
Fianu Labs Emerges From Stealth With $2 Million in Seed Funding
Fianu Labs on Wednesday emerged from stealth mode and announced that it has raised $2 million in seed funding from startup foundry DataTribe for its…
Operation ‘Duck Hunt’: Qakbot Malware Disrupted, $8.6 Million in Cryptocurrency Seized
Law enforcement authorities on Tuesday announced the cross-border dismantling of the notorious Qakbot cybercrime operation that hit more than 700,000 computers globally with ransomware and…
VMware Patches Major Security Flaws in Network Monitoring Product
Virtualization technology giant VMware on Tuesday shipped a major security update to correct at least two critical vulnerabilities in its Aria Operations for Networks product…
OpenAI Turns to Security to Sell ChatGPT Enterprise
Looking to cash in on the gold rush for generative-AI computing, OpenAI has rolled out a business edition of its popular ChatGPT app promising “enterprise-grade…
New ‘MMRat’ Android Trojan Targeting Users in Southeast Asia
A newly identified Android trojan targeting users in Southeast Asia is allowing attackers to control devices remotely and perform bank fraud, Trend Micro reports. Dubbed…
Meta Fights Sprawling Chinese ‘Spamouflage’ Operation
Meta on Tuesday said it purged thousands of Facebook accounts that were part of a widespread online Chinese spam operation trying to covertly boost China…
Chinese APT Was Prepared for Remediation Efforts in Barracuda ESG Zero-Day Attack
The Chinese cyberespionage group exploiting Barracuda Email Security Gateway (ESG) appliances was preparing for remediation efforts, deploying persistent backdoors on select targets, Mandiant reports. Tracked…
Did Microsoft Just Upend the Enterprise Browser Market?
NEWS ANALYSIS: Redmond plants its feet firmly in the enterprise browser space, sending major ripples through Silicon Valley’s bustling venture-backed startup ecosystem. Without much fanfare…
The Reality of Cyberinsurance in 2023
The cyberinsurance industry is maturing. In its early days, it simply accepted cyber risk with few questions asked. It lost money. Now it asks more…
UN Warns Hundreds of Thousands in Southeast Asia Roped Into Online Scams
The U.N. human rights office says criminal gangs have forced hundreds of thousands of people in Southeast Asia into participating in unlawful online scam operations,…
Security Team Huddle: Using the Full NIST Cybersecurity Framework for the Win
The National Institute of Standards and Technology’s (NIST) recent decision to include “govern” as a core function of its Cybersecurity Framework (CSF) is much-needed additional…