Security News > 2021 > May

The Federal Bureau of Investigation says its Internet Crime Complaint Center received more than one million cybercrime complaints over the past 14 months. Established in 2000 as the Internet Fraud Complaint Center and renamed in 2002, IC3 has received a total of 6 million complaints to date.

1Password has unveiled a full-featured desktop app for Linux, written in Rust and using the ring crypto library for end-to-end encryption. The release features encrypted browser and desktop integration and, according to the business, "Uses the Linux kernel keyring to establish a fully encrypted connection between 1Password in your browser and 1Password for Linux."

1Password has launched a full-featured desktop app for Linux, providing users with the ability to secure credentials across devices from the same 1Password app. 1Password for Linux alleviates this challenge by delivering the same ease-of-use and high levels of security that 1Password users have become accustomed to.

You can't possibly patch all CVEs, so focus on the exploits crooks are willing to pay for, as tracked in a study of the underground exploit market. A year-long study into the underground market for exploits in cybercriminal forums shows that crooks are salivating for Microsoft bugs, which are far and away the most requested and most sold exploits.

Argentina has ordered Facebook to suspend its data use policy allowing it to collect information from users of its WhatsApp messaging app, the government announced on Monday. In the meantime, the national agency that protects personal data and access to public information will lead an investigation into Facebook's plans.

Security researchers have documented an attack technique that may allow attackers to leverage a legitimate Amazon VPC feature to mask their use of stolen API credentials inside AWS. The feature and its exploitation potential. The feature that allows customers to control their IP addresses also allows attackers to control the IP address written to AWS CloudTrail logs when accessing a compromised account via a newly created VPC endpoint.

The European Council this week announced its decision to extend for one year the framework for sanctions against cyberattacks that threaten the European Union and its member states. Established in 2017, the framework allows member states to take restrictive measures against cyberattacks, including to prevent, discourage, deter and respond to malicious activities.

Cisco announces XDR, SASE and network security improvements. Cisco unveiled improvements for its extended detection and response solutions, including enhanced vulnerability management capabilities as a result of the acquisition of Kenna Security, better device visibility via SecureX, simplified transition from EDR to XDR, and expanded investigation and threat hunting capabilities.

Microsoft is bringing advanced hardware security to more Surface devices with cloud firmware management to help enterprises deploy new PCs quickly. Microsoft's Surface Laptop 4 is the second Surface device that uses Secured-core to protect the firmware.

An ongoing campaign abuses the Microsoft Build Engine platform for the fileless delivery of malware, security researchers with threat intelligence firm Anomali reveal. Described as the build platform for Microsoft and Visual Studio, MSBuild has a feature that allows developers to specify for code to be executed in memory, and adversaries have abused this in a new campaign for the fileless delivery of their malicious payloads.