The Week in Ransomware – August 12th 2022 – Attacking the Defenders It was a very busy week for ransomware news and attacks, especially with the disclosure that Cisco was breached by a threat actor affiliated with the Yanluowang ransomware gang. On Wednesday, the Yanluowang ransomware gang claimed to have Read more…
Microsoft is Showing Ads for Microsoft 365 in Office 2021 Microsoft is showing ads for Microsoft 365 Family subscriptions to its Office 2021 customers, offering them discounts of over $28 to get a 3-month Family plan subscription. Several users have reported seeing these ads this week, starting on August 10, with Lee Read more…
Chinese Hackers Backdoor Chat App with New Linux, MacOS Malware Versions of a cross-platform instant messenger application focused on the Chinese market known as ‘MiMi’ have been trojanized to deliver a new backdoor (dubbed rshell) that can be used to steal data from Linux and macOS systems. SEKOIA’s Threat & Read more…
Anonymous Poop Gifting Site Hacked, Customers Exposed ShitExpress, a web service that lets you send a box of feces along with a personalized message to friends and enemies, has been breached after a “customer” spotted a vulnerability. Except, in an interesting twist, rather than responsibly reporting the vulnerability, the customer Read more…
Microsoft Blocks UEFI Bootloaders Enabling Windows Secure Boot Bypass Some signed third-party bootloaders for the Unified Extensible Firmware Interface (UEFI) could allow attackers to execute unauthorized code in an early stage of the boot process, before the operating system loads. Vendor-specific bootloaders used by Windows were found to be vulnerable while Read more…
Twilio: 125 Customers Affected by Data Breach, No Passwords Stolen Cloud communications giant Twilio, the owner of the highly popular two-factor authentication (2FA) provider Authy, says that it has so far identified 125 customers who had their data accessed during a security breach discovered last week. The company added the attackers behind this Read more…
Palo Alto Networks: New PAN-OS DDoS Flaw Exploited in Attacks Palo Alto Networks has issued a security advisory warning of an actively exploited high-severity vulnerability impacting PAN-OS, the operating system used by the company’s networking hardware products. The issue, tracked as CVE-2022-0028 (CVSS v3 – 8.6), is an URL filtering policy misconfiguration Read more…
Xiaomi Phones with MediaTek Chips Vulnerable to Forged Payments Security analysts have found security issues in the payment system present on Xiaomi smartphones that rely on MediaTek chips providing the trusted execution environment (TEE) that is responsible for signing transactions. Attackers could exploit the weaknesses to sign fake payment packages Read more…
Microsoft Shares Workarounds for Outlook Crashing After Launch Microsoft is investigating customer reports of a known issue causing Outlook for Microsoft 365 to freeze and crash right after opening. According to a new support document published by Redmond on Thursday, these Outlook desktop client crashes will be automatically logged and Read more…
US Govt will Pay you $10 million for Info on Conti Ransomware Members The U.S. State Department announced a $10 million reward today for information on five high-ranking Conti ransomware members, including showing the face of one of the members for the first time. The Rewards of Justice program is Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
