The Week in Ransomware – January 21st 2022 – Arrests, Wipers, and More It has been quite a busy week with ransomware, with law enforcement making arrests, data-wiping attacks, and the return of the Qlocker ransomware. This week’s biggest news is Russia’s arrest of fourteen suspected members of the REvil ransomware operation. Read more…
Microsoft Backpedals on Windows 11 NCPA Control Panel Removal Microsoft has backpedaled its decision to forcefully redirect users from the Network Connections (ncpa.cpl) control panel to the Advanced Network Settings screen in Windows 11 preview builds. Microsoft has slowly begun to chip away at the old Control Panel interface for Read more…
Phishing Impersonates Shipping Giant Maersk to Push STRRAT Malware A new phishing campaign using fake shipping delivery lures installs the STRRAT remote access trojan on unsuspecting victim’s devices. Fortinet discovered the new campaign after spotting phishing emails impersonating Maersk Shipping, a giant in the global shipping industry, and using seemingly Read more…
Microsoft Disables Excel 4.0 Macros by Default to Block Malware ​Microsoft has announced that Excel 4.0 (XLM) macros will now be disabled by default to protect customers from malicious documents. In October, the company first revealed in a Microsoft 365 message center update that it would disable XLM macros in all tenants if Read more…
Over 90 WordPress Themes, Plugins Backdoored in Supply Chain Attack A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to websites. In total, threat actors compromised 40 themes and 53 plugins belonging to AccessPress, a developer of WordPress add-ons used Read more…
McAfee Agent Bug Lets Hackers Run Code with Windows SYSTEM Privileges McAfee Enterprise (now rebranded as Trellix) has patched a security vulnerability discovered in the company’s McAfee Agent software for Windows enabling attackers to escalate privileges and execute arbitrary code with SYSTEM privileges. McAfee Agent is a client-side component of McAfee ePolicy Orchestrator Read more…
SonicWall Shares Temp Fix for Firewalls Stuck in Reboot Loop Following a stream of customer reports that started yesterday evening, security hardware manufacturer SonicWall has provided a temporary workaround for reviving next-gen firewalls running SonicOS 7.0 stuck in a reboot loop. SonicWall’s Gen7 firewalls are the company’s newest firewall devices providing users with encrypted traffic Read more…
Microsoft Starts Force Installing Windows 10 21H2 on More Devices Microsoft has started the forced rollout of Windows 10, version 21H2 to more devices approaching the end of service (EOS) as part of a first machine learning (ML) training phase. The automated feature update rollout phase comes after Windows 10 Read more…
Microsoft Lists the Windows 10 Group Policies to Avoid Microsoft released a list of twenty-five group policies that admins should not use in Windows 10 and Windows 11 as they do not provide optimal behavior or cause unexpected results. Since Windows 10, version 1511, was released in November 2015, Microsoft Read more…
‘Anomalous’ Spyware Stealing Credentials in Industrial Firms Researchers have uncovered several spyware campaigns that target industrial enterprises, aiming to steal email account credentials and conduct financial fraud or resell them to other actors. The actors use off-the-shelf spyware tools but only deploy each variant for a very limited time to Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
