Write your post here.
- Cyber attacks
- Variant of Phorpiex botnet used for cryptocurrency attacks in Ethopia, Nigeria, India and more [Jonathan Greig, ZDNet]
- Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials [Ravie Lakshmanan, The hacker news]
- Pen Test Partners: Anyone could view Gumtree users’ GPS location by pressing F12 [Gareth Corfield, The register]
- Vulnerabilities
- Latest Apple iOS Update Patches Remote Jailbreak Exploit for iPhones [Ravie Lakshmanan, The hacker news]
- Hackers Begin Exploiting Second Log4j Vulnerability as a Third Flaw Emerges [Ravie Lakshmanan, The hacker news]
- Microsoft December 2021 Patch Tuesday: Zero-day exploited to spread Emotet malware [Charlie Osborne, ZDNet]
- Adobe addresses over 60 vulnerabilities in multiple products [Pierluigi Paganini, Security Affairs]
- Flaws in Lenovo laptops allow escalating to admin privileges [Pierluigi Paganini, Security Affairs]
- Malware
- New Fileless Malware Uses Windows Registry as Storage to Evade Detection [Ravie Lakshmanan, The hacker news]
- Anubis Banking Trojan Resurfaces to Cripple Over 400 Financial Firms [Cyware, Cyware]
- PseudoManuscrypt, a mysterious massive cyber espionage campaign [Pierluigi Paganini, Security Affairs]