This Week in Cyberspace (19-25 February 2022)
What happened in the cyber world this week? The prominent cyber security news of the week is with you...
CISA Compiles List of Free Cybersecurity Tools and Services
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a list of free cybersecurity services and tools to help organizations increase their security capabilities and better defend against cyberattacks.
Iranian Hackers Target VMware Horizon Servers with Log4j Exploits
An Iranian-aligned hacking group tracked as TunnelVision was spotted exploiting Log4j on VMware Horizon servers to breach corporate networks in the Middle East and the United States.
Master Key for Hive Ransomware Retrieved Using a Flaw in its Encryption Algorithm
Researchers have detailed what they call the "first successful attempt" at decrypting data infected with Hive ransomware without relying on the private key used to lock access to the content.
Severe WordPress Plug-In UpdraftPlus Bug Threatens Backups
An oversight in a WordPress plug-in exposes PII and authentication data to malicious insiders.
OpenSea Users Lose $2 Million Worth of NFTs in Phishing Attack
The non-fungible token (NFT) marketplace OpenSea is investigating a phishing attack that left 17 of its users without more than 250 NFTs worth around $2 million.
New Xenomorph Android Malware Targets Customers of 56 Banks
A new malware called Xenomorph distributed through Google Play Store has infected more than 50,000 Android devices to steal banking information.
Revamped CryptBot Malware Spread by Pirated Software Sites
A new version of the CryptBot info stealer was seen in distribution via multiple websites that offer free downloads of cracks for games and pro-grade software.
Vulnerable Microsoft SQL Servers Targeted With Cobalt Strike
Threat analysts have observed a new wave of attacks installing Cobalt Strike beacons on vulnerable Microsoft SQL Servers, leading to deeper infiltration and subsequent malware infections.
Google Chrome to Allow Users to Add Notes to Saved Passwords
Google is testing a new Chrome feature that allows users to add notes on passwords saved in the web browser.
Ukrainian Government and Banks Once Again Hit by DDoS Attacks
The sites of several Ukrainian government agencies (including the Ministries of Foreign Affairs, Defense, and Internal Affairs, the Security Service, and the Cabinet of Ministers), and of the two largest state-owned banks are again targeted by Distributed Denial-of-Service (DDoS) attacks.
LockBit, Conti Most Active Ransomware Targeting Industrial Sector
Ransomware attacks extended into the industrial sector last year to such a degree that this type of incident became the number one threat in the industrial sector.
US, UK Link New Cyclops Blink Malware to Russian State Hackers
New malware dubbed Cyclops Blink has been linked to the Russian-backed Sandworm hacking group in a joint security advisory published today by US and UK cybersecurity and law enforcement agencies.
CISA Warns of Actively Exploited Vulnerabilities in Zabbix Servers
A notification from the U.S. Cybersecurity Infrastructure and Security Agency (CISA) warns that threat actors are exploiting vulnerabilities in Zabbix open-source tool for monitoring networks, servers, virtual machines, and cloud services.
Putin Warns Russian Critical Infrastructure to Brace for Potential Cyber Attacks
The Russian government on Thursday warned of cyber attacks aimed at domestic critical infrastructure operators, as the country's full-blown invasion of Ukraine enters the second day.
Sign up for the e-mail list to be informed about the developments in the cyber world and to be informed about the weekly newsletter.