- Security News:
- Unpatched Microsoft Exchange Servers abused in new phishing campaign [Waqas, HackRead]
- FBI seized $2.3M from affiliate of REvil, Gandcrab ransomware gangs [Lawrence Abrams, Bleeping Computer]
- Former Employee Accused of Being Behind Ubiquiti Hack [Eduard Kovacs, SecurityWeek]
- Exploited Vulnerabilities:
- Microsoft Exchange servers hacked to deploy BlackByte ransomware [Bill Toulas, Bleeping Computer]
- Email-Borne Threats:
- This stealthy malware delivers a ‘silent threat’ that wants to steal your passwords [Danny Palmer, ZDNet]
- Malware:
- Researchers Flag 300K Banking Trojan Infections from Google Play in 4 Months [Becky Bracken, Threatpost]
- Emotet now spreads via fake Adobe Windows App Installer packages [Lawrence Abrams, Bleeping Computer]
- NginRAT – A stealth malware targets e-store hiding on Nginx servers [Pierluigi Paganini, Security Affairs]
- Vulnerabilities & Patches:
- Unpatched Windows Zero-Day Allows Privileged File Access [Tara Seals, Threatpost]
- Critical Wormable Security Flaw Found in Several HP Printer Models [Ravie Lakshmanan, The Hacker News]
- Breaches & Leaks:
- Panasonic discloses four-months-long data breach [Catalin Cimpanu, The Record]
- Ransomware attack shuts down Lewis & Clark Community College [Russell Kinsaul, KMOV4]
- DNA testing service data breach impacting 2.1 million users [Waqas, HackRead]
- Cyber-attack on Planned Parenthood [Sarah Coble, Infosecurity Magazine]]
- Others:
- Behind the Man-in-the-Middle Attacks For Connected Cars: Real-Life Interception of Network Traffic Between Connected Car and Back-End Platforms [Medium]
- Microsoft Edge will now warn users about the dangers of downloading Google Chrome [Andrew Cunningham, Ars Technica]
- Microsoft Defender scares admins with Emotet false positives [Sergiu Gatlan,, Bleeping Computer]
- Russian Man Sentenced to 60 Months in Prison for Running ‘Bulletproof’ Hosting for Cybercrime [Dark Reading]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F