Security News > 2021

This week Samsung has started rolling out Android's March security updates to mobile devices to patch critical security vulnerabilities in the runtime, operating system, and related components. This comes after Android had published their March 2021 security updates bulletin, which includes patches for critical vulnerabilities impacting the latest devices.

This week we have seen ransomware attacks targeting online service providers and MSPs to not only encrypt the victim but also cause significant outages for their customers. As for new ransomware, we continue to see new variants released and new in-development threats, such as a strange one that only decrypts victims if they join the threat actor's Discord server.

The creator of McAfee computer security software faces charges he cashed in on a "Pump-and-dump" scheme, promoting cryptocurrencies on Twitter to drive up their value. John McAfee, founder of the antivirus firm that bears his name, and Jimmy Watson face charges of conspiracy, fraud, and money laundering in connection with schemes to trick cryptocurrency investors, according to an indictment unsealed by the US Department of Justice.

U.S. federal prosecutors have charged John McAfee, founder of cybersecurity firm McAfee, and his executive advisor Jimmy Gale Watson Jr for cryptocurrency fraud and money laundering. In total, McAfee, Watson, and other members of the McAfee Team were able to collect over $13 million from two cryptocurrency pump-and-dump schemes, according to court documents.

"Speech absolutism is more a dream than a thing. I prefer answering bad ideas with good ones, not through the camber of a barrel loaded with a projectile." I think "Hate speech" is a concept so flawed it shouldn't be used outside metaphorical speech, because: in being specific in accusing others of 'hate speech', imo it is then obivously paradoxical, that one is attributing ill will to others by decree, which in itself would then be the same as 'hate' or 'hating'.

A new ransomware called 'Hog' encrypts users' devices and only decrypts them if they join the developer's Discord server. This week, security researcher MalwareHunterTeam found an in-development decryptor for the Hog Ransomware that requires victims to join their Discord server to decrypt their files.

With the arrival of Google Chrome v89 on Tuesday, Google is preparing to test a technology called Federated Learning of Cohorts, or FLoC, that it hopes will replace increasingly shunned, privacy-denying third-party cookies. Bennett Cyphers, staff technologist at the Electronic Frontier Foundation, argues FLoC is "a terrible idea," and urges Google to refocus its efforts on building a web that serves the people who use it.

At least 30,000 organizations across the United States - including a significant number of small businesses, towns, cities and local governments - have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that's focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity. The espionage group is exploiting four newly-discovered flaws in Microsoft Exchange Server email software, and has seeded hundreds of thousands of victim organizations worldwide with tools that give the attackers total, remote control over affected systems.

Weapons programs from the U.S. Department of Defense are falling short when it comes to incorporating cybersecurity requirements, according to a new watchdog report. While the DoD has developed a range of policies aimed at hardening the security for its weapon systems, the guidance leaves out a key detail - the contracts for procuring various weapons.

The downloader malware known as Gootloader is poisoning websites globally as part of an extensive drive-by and watering-hole cybercampaign that abuses WordPress sites by injecting them with hundreds of pages of fake content. Researchers with eSentire spotted a Gootloader campaign in December, infiltrating dozens of legitimate websites involved in the hotel industry, high-end retail, education, healthcare, music and visual arts, among others.