Cybercrime, URSA is emerging as a threat in several countries
The cyber security expert Pedro Tavares: The malware has two loaders, several rounds of obfuscation and rabbit holes, and a low detection rate.
Cyber Warfare, CISA: China-linked hackers target US agencies
The cyber security experts: They use publicly available information sources and common, well-known TTPs. It’s the second warning in few days ahead the presidential elections.
Cyber security, new RCE flaw on Microsoft Exchange Server
The researcher Steven Seeley: It’s due to improper validation of cmdlet arguments. Exploitation requires an authenticated user in a certain role. Patches have been released.
Cyber Warfare, attacks on U.S. grow as elections approach
Microsoft cyber security experts: Foreign activity stepped up targeting the 2020 vote. It’s the work of well known actors as Strontium, Zirconium and Phosphorus.
Cybercrime, fake Tik Tok app spreads an Android spyware
Zscaler cyber security experts: The malware simulates a faulty software, but meanwhile hides in the device and start working. It’s brain is the “MainService”.
Belarus, political tensions boost waves of cyber attacks
Atlas VPN cyber security experts: The country in the last 31 days suffered 2.1 million aggressions. Part are for cyber espionage purpose, other for cybercrime.
Cybercrime, new Thanos ransomware version targets Middle East-North Africa
Palo Alto Networks cyber security experts: The malware was configured to overwrite the master boot record (MBR), and contains network-spreading functionality.
Cybercrime, Evilnum is spreading a new RAT: PyVil
Cybereason cyber security experts: The malware, written in Python, has different functionalities. The chain of infection and the infrastructure are also changed.
Cybercrime, “message quarantine” lure to steal employee credentials
Cofense cyber security experts: A mail alerts the victim on three messages at risk and asks to click a link. This leads to a real company’s page with a fake login panel.
Cyber Security, Microsoft Defender now can download malware
Mohammad Askar: A recent update includes a new - DownloadFile command-line argument. Bleeping Computer: It allows local users to use MpCmdRun.exe to download files from a remote location.