Cybercrime, Emotet attacks with mail without the attachments
Cyber security expert JAMESWT discovers a new campaign that exploits stolen conversations. The victim is invited to open a link to start the malware infection.
Cyber Security, IoT BLE devices vulnerable to BLESA attacks
Purdue University cyber security esperts: authentication during the reconnection of devices is optional and can potentially be circumvented. But attacker has to be near the target.
Cybercrime, Lucifer campaign is evolving and will continue
Check Point cyber security experts: The Windows crypto miner and DDOS hybrid malware now is multi-platform and multi-architecture, targeting Linux and IoT devices.
Cybercrime, LockBit gang is back with double ransomware extortion
Kela cyber security experts: The Criminal Hakcers launched a new data leak site. Previously they had anothe one, but it was closed when they joined the Maze Cartel.
Cybercrime, URSA is emerging as a threat in several countries
The cyber security expert Pedro Tavares: The malware has two loaders, several rounds of obfuscation and rabbit holes, and a low detection rate.
Cyber Warfare, CISA: China-linked hackers target US agencies
The cyber security experts: They use publicly available information sources and common, well-known TTPs. It’s the second warning in few days ahead the presidential elections.
Cyber security, new RCE flaw on Microsoft Exchange Server
The researcher Steven Seeley: It’s due to improper validation of cmdlet arguments. Exploitation requires an authenticated user in a certain role. Patches have been released.
Cyber Warfare, attacks on U.S. grow as elections approach
Microsoft cyber security experts: Foreign activity stepped up targeting the 2020 vote. It’s the work of well known actors as Strontium, Zirconium and Phosphorus.
Cybercrime, fake Tik Tok app spreads an Android spyware
Zscaler cyber security experts: The malware simulates a faulty software, but meanwhile hides in the device and start working. It’s brain is the “MainService”.
Cybercrime, new Agent Tesla campaign exploits company orders
The cyber security expert JAMESWT: The malware infection chain is activated if the victim enable Macros of an attachment related to a fake request by a real company.