News from the different realms of Cybersecurity
Info Stealer Banking Trojan Xenomorph Supposedly on Google Play. Targeting 56 banks in Europe and having over 50,000 installations.
#banking #android #google #trojan #informationtheft #cybercrime #cybersecurity
burnoutblusbolsteredblog.blogspot.com/2022/02/info-stealer-banking-trojan-xenomorph.html
Ready or not, it’s patch time again:
“Point and Print Default Behavior Change” via MSRC : https://msrc-blog.microsoft.com/2021/08/10/point-and-print-default-behavior-change/
Microsoft: Security Updates for August: https://msrc.microsoft.com/update-guide/
Adobe: Security updates for Adobe Connect and Magento : https://helpx.adobe.com/security/security-bulletin.html
“Firefox 91 Introduces Enhanced Cookie Clearing” via Mozilla Security Blog : https://blog.mozilla.org/security/2021/08/10/firefox-91-introduces-enhanced-cookie-clearing/
“Snort rule update for Aug. 10, 2021 — Microsoft Patch Tuesday” via Snort Blog : https://blog.snort.org/2021/08/snort-rule-update-for-aug-10-2021.html
“Actively exploited bug bypasses authentication on millions of routers” via Sergiu Gatlan | Bleeping Computer
“Threat actors actively exploit a critical authentication bypass vulnerability impacting home routers with Arcadyan firmware to take them over and deploy Mirai botnet malicious payloads.
The vulnerability tracked as CVE-2021-20090 is a critical path traversal vulnerability (rated 9.9/10) in the web interfaces of routers with Arcadyan firmware that could allow unauthenticated remote attackers to bypass”….
More detail here: https://www.bleepingcomputer.com/news/security/actively-exploited-bug-bypasses-authentication-on-millions-of-routers/
Bug hunters asked to probe Microsoft Teams mobile apps, can earn up to $30k
— Read on www.helpnetsecurity.com/2021/07/20/bug-hunters-microsoft-teams/
Nasty Linux systemd security bug revealed
— Read on www.zdnet.com/article/nasty-linux-systemd-security-bug-revealed/
Malaysian authorities crush 1,069 crypto mining rigs with a steamroller
— Read on www.engadget.com/malaysia-crush-1069-crypto-mining-rigs-steamroller-131251559.html
“Hackers used SolarWinds zero-day bug to target US Defense orgs” via Lawrence Abrams | Bleeping Computer
“China-based hackers actively target US defense and software companies using a vulnerability in the SolarWinds Serv-U FTP server.
Today, SolarWinds released a security update for a zero-day vulnerability in Serv-U FTP servers that allow remote code execution when SSH is enabled.
According to SolarWinds, this vulnerability was disclosed to Microsoft, who saw a threat actor actively exploiting the vulnerability to execute commands on vulnerable customer’s devices.”
More detail: https://www.bleepingcomputer.com/news/microsoft/hackers-used-solarwinds-zero-day-bug-to-target-us-defense-orgs/
“Microsoft to acquire RiskIQ to strengthen cybersecurity of digital transformation and hybrid work” via Emma Jones | Microsoft Security Blog
“Organizations are increasingly using the cloud to reimagine every facet of their business. Hybrid work has accelerated this digital transformation, and customers are challenged with the increasing sophistication and frequency of cyberattacks. Today, Microsoft is announcing that we have entered into a definitive agreement to acquire RiskIQ, a leader in global threat intelligence and attack surface management, to help our shared customers build a more comprehensive view of the global threats to their businesses, better understand vulnerable internet-facing assets, and build world-class threat intelligence.”
“China to remove 25 Didi apps from store as crackdown intensifies” via Reuters
“administration on Friday said it would remove 25 mobile apps operated by Didi Global Inc from app stores as the government stepped up a crackdown on the ride-hailing giant.
The apps in question used data that was illegally collected by Didi and include those for its delivery service, camera device and finance services, the Cyberspace Administration of China said in a statement.”
More detail: https://finance.yahoo.com/amphtml/news/china-cyberspace-administration-says-remove-142715192.html
Found this great article detailing privacy and remote work:
“Remote Workforce Monitoring Brings Up Privacy Concerns” via Security Boulevard
“The pandemic paved the way for expanded remote work possibilities, but companies looking to ensure employees remain on the job while at home have led some to consider technologies to digitally monitor worker activity, in some cases through AI.
Those initiatives come laden with thorny privacy concerns, legal landmines and, more than likely, stiff resistance from employees themselves—a recent report from IT research firm Gartner indicates 10% of workers would try to trick AI-driven tracking systems.”
More detail: https://securityboulevard.com/2021/07/remote-workforce-monitoring-brings-up-privacy-concerns/
Cybersecurity Today