Infosec bits for week 44/21
- Security News:
- Cybercrime News Technology GitLab servers are being exploited in DDoS attacks in excess of 1 Tbps [Catalin Cimpan, The Record]
- BlackMatter ransomware gang says it’s disbanding – again – after Ukraine arrests [Gareth Corfield, The Register]
- Police arrest hackers behind over 1,800 ransomware attacks [Bill Toulas, Bleeping Computer]
- Cybercriminals sell access to international shipping, logistics giants [Charlie Osborne, ZDNet]
- Vulnerabilities & Patches:
- Linux Foundation Fixes ‘Dangerous’ Code Execution Kernel Bug [Ryan Naraine, SecurityWeek]
- Google Patches Android Zero-Day Exploited in Targeted Attacks [Eduard Kovacs, SecurityWeek]
- Cisco fixes hard-coded credentials and default SSH key issues [Sergiu Gatlan, Bleeping Computer]
- Email-Borne Threats:
- Spooky Ransomware Steals Past SEGs in Under 15 Minutes [Harsh Patel & Zachary Bailey,Cofense]
- Phishing: Attackers Use DocuSign to Send Malicious Links [David Bisson, Security Intelligence]
- Breaches & Leaks:
- Others:
- US sanctions four companies selling hacking tools, including NSO Group & Candiru [Catalin Cimpanu, The Record]
- Widespread Security Risk Identified in Phones and Bluetooth Devices Approximately 40 percent of mobile phones may be compromised [Michelle Hampson, IEEE]
- Cybercriminals Take Aim at Connected Car Infrastructure [Robert Lemos, Dark Reading]
- Cyber criminals use Black Friday as bait to scam shoppers [Sibahle Malinga, ITWeb]
- Microsoft Exchange ProxyShell exploits used to deploy Babuk ransomware [Bill Toulas, Bleeping Computer]