Security News > 2021 > January

A webshell called BumbleBee has taken flight in an ongoing xHunt espionage campaign that has targeted Microsoft Exchange servers at Kuwaiti organizations. "We found BumbleBee hosted on an internal Internet Information Services web server on the same network as the compromised Exchange server, as well as on two internal IIS web servers at two other Kuwaiti organizations," researchers explained in a Monday blog.

In tandem with Tuesday's security update, Adobe starting on Tuesday will also block Flash Player content, weeks after dropping support for Flash. The move means that when users attempt to load a page with Flash Player, the content now will no longer load. "Since Adobe will no longer be supporting Flash Player after December 31, 2020 and Adobe will block Flash content from running in Flash Player beginning January 12, 2021, Adobe strongly recommends all users immediately uninstall Flash Player to help protect their systems," according to Adobe.

SEE: 5 programming languages cloud engineers should learn. The programming languages below are selected because they represent the best languages for cloud engineers to know when working within their field to leverage all platforms and maximize compatibility.

Microsoft on Monday announced that Microsoft Defender for Endpoint on Linux now provides endpoint detection and response capabilities to all users. Initially available on Windows only, Microsoft Defender for Endpoint has received support for all major platforms, and is now available on macOS, Linux, Android, and iOS, the Redmond, Wash.

Capcom has released a new update for their data breach investigation and state that up to 390,000 people may now be affected by their November ransomware attack. On November 2nd, Capcom suffered a cyberattack by the Ragnar Locker ransomware operation who stated they stole 1TB of data from the company.

Europol on Tuesday announced the takedown of DarkMarket, which according to the law enforcement agency is "The world's largest illegal marketplace on the dark web." DarkMarket served as a marketplace for cybercriminals to buy and sell drugs, counterfeit money, stolen or counterfeit credit card data, anonymous SIM cards and malware.

Adobe on Tuesday released its first round of security updates for 2021, just as the company starts blocking Flash content. Adobe has patched a total of eight vulnerabilities across seven of its products, including Photoshop, Illustrator, Animate, Campaign Classic, InCopy, Captivate and Bridge.

At the virtual Consumer Electronics Show on Monday, chipmaker Intel announced CPU-based ransomware detection capabilities have been fitted directly into the Intel vPro platform. Most traditional detection solutions, Intel suggests, are reactionary, not to mention the fact that ransomware operators use various means to evade detection.

Part of what defines us is our ability to adapt to change and the faster we adapt, the more successful we will be. The change we encountered in 2020 was unprecedented and had a dramatic impact on our operational technology environments - accelerating and sometimes recasting how we address the following four key areas.

A German-led police operation has taken down the "World's largest" darknet marketplace, whose Australian alleged operator used it to facilitate the sale of drugs, stolen credit card data and malware, prosecutors said Tuesday. Police in the northern city of Oldenburg "Were able to arrest the alleged operator of the suspected world's largest illegal marketplace on the darknet, the DarkMarket, at the weekend," prosecutors said in a statement.