Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (8) packetstormsecurity (2)

Treasury to issue new cryptocurrency sanctions after ransomware attacks

cyware Sep 18, 2021 Govt., Critical Infrastructure

The Biden administration is preparing to issue a series of actions, including sanctions, to make it more difficult for hackers to profit off of ransomware attacks through the use of digital currency.

AMD Chipset Driver flaw allows obtaining sensitive data

cyware Sep 18, 2021 Malware and Vulnerabilities

Chipmaker AMD has addressed a medium severity issue in Platform Security Processor (PSP) chipset driver, tracked as CVE-2021-26333, that could allow an attacker to obtain sensitive information from the targeted system.

Yes, of course there's now malware for Windows Subsystem for Linux

cyware Sep 18, 2021 Malware and Vulnerabilities

Linux binaries have been found trying to take over Windows systems in what appears to be the first publicly identified malware to utilize Microsoft's Windows Subsystem for Linux (WSL) to install unwelcome payloads.

Microsoft MSHTML Flaw Exploited by Ryuk Ransomware Gang

cyware Sep 18, 2021 Malware and Vulnerabilities

Criminals behind the Ryuk ransomware were early exploiters of the Windows MSHTML flaw, actively leveraging the bug in campaigns ahead of a patch released by Microsoft this week.

APT-C-36 Drops Commodity RATs For Financial Gains

cyware Sep 18, 2021 Threat Actors

Trend Micro discovered an ongoing spam campaign by the APT-C-36 group that sends phishing emails to various entities in South America and delivers commodity RATs. Apart from potential financial gains, the group’s motives are not yet clear. Experts suggest organizations to be wary of this threat group to avoid any unpleasant surprises.

SOVA Trojan: A Potential Harbinger of Chaos

cyware Sep 18, 2021 Malware and Vulnerabilities

Banking and shopping apps and cryptocurrency wallets of users in the U.S. and Spain are under attack from the SOVA Android trojan. Though in its early stage, it's been promoted on hacking forums with ads looking for malware testers. Security teams must act now and consider implementing a risk-based mobile security strategy.

PYSA Group Joins the Cabal of Malware Groups Targeting Linux

cyware Sep 18, 2021 Malware and Vulnerabilities

Lacework is warning of new threats from PYSA ransomware actors who just added capabilities to target Linux systems with ChaChi backdoor. Besides PYSA, several cybercriminals have recently been observed to be targeting Linux-based systems and networks in addition to Windows. No attack footprints for now but this malware could be used in future attack campaigns. Do watch out!

Chinese Group Grayfly Uses SideWalk Backdoor

cyware Sep 18, 2021 Threat Actors

Experts reported a SideWalk malware attack on an undisclosed computer retail firm in the U.S. by Grayfly, a China-affiliated espionage group. Active at least since March 2017, Grayfly continues to refine its tools and evasion tactics. Security agencies and analysts in concerned sectors must watch this threat while using shared threat intelligence to detect and stop these attacks.

Apple Security Advisory 2021-09-13-2

packetstormsecurity Sep 18, 2021 Feed

Apple Security Advisory 2021-09-13-2 - watchOS 7.6.2 addresses code execution and integer overflow vulnerabilities.

Apple Security Advisory 2021-09-13-1

packetstormsecurity Sep 18, 2021 Feed

Apple Security Advisory 2021-09-13-1 - iOS 14.8 and iPadOS 14.8 addresses code execution, integer overflow, and use-after-free vulnerabilities.

2021-09

202020212022202320242025

Aggregator history

Saturday, September 18

WED

THU

FRI

SAT

SUN

MON

TUE