Malware

Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Gmail, Jason Woods – SWN #346

December 5, 2023

Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Sellafield, Gmail, Jason Wood, and more on this edition of the Security Weekly News.

Malware

MIPS chips targeted by new P2Pinfect malware in Redis server and IoT-based attacks

Steve ZurierDecember 4, 2023

The move by the threat actors to attack 32-bit MIPS processors reflects an attempt to propagate the P2Pinfect malware to a broader range of targets.

Malware

Chimera, Aliquippa, FNF, Lazarus, DARPA, Namedrop, Google, Aaran Leyland, and More – SWN #344

November 28, 2023

Chimera, Aliquippa, FNF, Lazarus, DARPA, Ransom Payments, Namedrop, Google, Aaran Leyland, and more are on this edition of the Security Weekly News.

Ransomware

New Phobos ransomware variant impersonates VX-Underground malware-sharing group

Laura FrenchNovember 22, 2023

VX-Underground told SC Media the attempted frame-job would likely have little impact except to “make us look like jerks.”

Linux source code with a binary background. 3D rendered Illustration.

Cloud Security

Kinsing malware exploits critical Apache ActiveMQ flaw to mine crypto

Steve ZurierNovember 21, 2023

Earlier this month it was Looney Tunables, now Kinsing launched attacks on Apache ActiveMQ to infect systems with malware and cryptominers.

Malware

LummaC2 4.0 infostealer uses trigonometry to avoid sandboxes

Steve ZurierNovember 20, 2023

Outpost24 researchers expect LummaC2 4.0 malware to evolve with improved obfuscation techniques and updates to its control panel.

Vulnerability Management

Cashwarp vs. Reptar, Rackspace, BlackCat, Bots, Aaran Leyland and More – SWN #343

November 17, 2023

Cashwarp vs. Reptar, Rackspace, BlackCat, Intel, AMD, Bots and more bots, Aaran Leyland, and More News on the Security Weekly News.

Vulnerability Management

SSH Under Attack, IoT Routers, BLE Spam, & Patching a House of Cards – PSW #807

November 15, 2023

In the Security News: SSH under attack, IoT routers have vulnerabilities, the BLE Spam attacks still work against iPhones, there is a longer story behind BLE spam, and Larry is one of the stars, denial of pleasure via BLE, vulnerability disclosure and your blob is showing, the half-day watcher, tapping into cameras, 50 shades of vulnerabilities, N...

Malware

Related Videos

Lessons from Ukraine: How cyberwar shapes security at home

Related Perspectives

Why software teams have to change their focus from vulnerabilities to malware

Bad bots are growing in volume and sophistication – here’s what to do about it

Eight ways to guard against botnet attacks on enterprise networks

Briefs

Malicious SpyLoan apps gain traction on Android

Fake Google Update and Microsoft One Drive binaries used in malicious attacks

Booking.com customers targeted with Vidar infostealer

Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Gmail, Jason Woods – SWN #346

MIPS chips targeted by new P2Pinfect malware in Redis server and IoT-based attacks

Chimera, Aliquippa, FNF, Lazarus, DARPA, Namedrop, Google, Aaran Leyland, and More – SWN #344

New Phobos ransomware variant impersonates VX-Underground malware-sharing group

Kinsing malware exploits critical Apache ActiveMQ flaw to mine crypto

LummaC2 4.0 infostealer uses trigonometry to avoid sandboxes

Cashwarp vs. Reptar, Rackspace, BlackCat, Bots, Aaran Leyland and More – SWN #343

SSH Under Attack, IoT Routers, BLE Spam, & Patching a House of Cards – PSW #807