Security News > 2021

Facebook Messenger users targeted by a large-scale scamA large-scale scam campaign targeting Facebook Messenger users all over the world has been detected by Group-IB. Hackers found leveraging three SonicWall zero-day vulnerabilitiesAttackers that seem to have "Intimate knowledge" of the SonicWall Email Security product have been discovered leveraging three zero-day vulnerabilities in the popular enterprise solution. Improper cloud IAM leaving organizations at riskThere is an industry-wide cloud permissions gap crisis, leaving countless organizations at risk due to improper identity and access management, a CloudKnox Security report reveals.

Emotet, one of the most dangerous email spam botnets in recent history, is being uninstalled today from all infected devices with the help of a malware module delivered in January by law enforcement. Emotet was used by the TA542 threat group to deploy second-stage malware payloads, including QBot and Trickbot, onto its victims' compromised computers.

Emotet, one of the most dangerous email spam botnets in recent history, is being uninstalled today from all infected devices with the help of a malware module delivered in January by law enforcement. Emotet was used by the TA542 threat group to deploy second-stage malware payloads, including QBot and Trickbot, onto its victims' compromised computers.

Celebrated information security researcher Dan Kaminsky, known not just for his technical ability but also for his compassion and support for those in his industry, has died. Though Kaminsky rose to fame in 2008 for identifying a critical design weakness in the internet's infrastructure - and worked in secret with software developers to mitigate the issue before it could be easily exploited - he had worked behind the scenes in the infosec world for at least the past two decades.

A shadowy company residing at a shared workspace above a Florida bank announced to the world's computer networks that it was now managing a colossal, previously idle chunk of the internet owned by the U.S. Department of Defense. It's also more than twice the size of the internet space actually used by the Pentagon.

Microsoft has released an emergency fix for gaming issues introduced by the Windows 10 2004 and Windows 10 20H2 KB5001330 update. With this release of the KB5000842 of the Windows 10 preview cumulative update at the end of March and in the subsequent release of April's KB5001330 update, Windows 10 users have been experiencing performance issues when playing games.

A ransomware gang has made $260,000 in just five days simply by remotely encrypting files on QNAP devices using the 7zip archive program. While most ransomware groups put considerable development time in their malware to make it efficient, feature-rich, and have strong encryption, the Qlocker gang didn't even have to create their own malware program.

The cybersecurity world woke up Saturday to news of the sudden passing of Dan Kaminsky, a celebrated hacker who is widely credited with pioneering research work on DNS security. A regular speaker at Black Hat and DEFCON conferences over the years, Kaminsky was most recently co-founder and chief scientist at Human Security, an anti-fraud startup.

A recently discovered cryptomining botnet is actively scanning for vulnerable Windows and Linux enterprise servers and infecting them with Monero miner and self-spreader malware payloads. While, at first, it was using a multi-component architecture with the miner and worm modules, the botnet has been upgraded to use a single binary capable of mining and auto-spreading the malware to other devices.

Cybercriminals have created a fake Microsoft DirectX 12 download page to distribute malware that steals your cryptocurrency wallets and passwords. First discovered by security researcher Oliver Hough, when the fake DirectX 12 installers are launched, they will quietly download malware from a remote site and execute it.