9 November 2023
2023
PureCrypter targets government entities through Discord
Abhay Yadav
Excerpt:
“Menlo Labs has uncovered an unknown threat actor that’s leveraging an evasive threat campaign distributed via Discord that features the PureCrypter downloader and targets government entities. The PureCrypter campaign uses the domain of a compromised non-profit organization as a Command and Control (C2) to deliver a secondary payload. The campaign was found to have delivered several types of malware including Redline Stealer, AgentTesla, Eternity, Blackmoon and Philadelphia Ransomware. Our investigation started when Menlo’s Cloud Security Platform blocked password-protected archive files across multiple government customers in the Asia-Pacific (APAC) and North America regions.”
China makes it even harder for data to leave its shores
Laura Dobberstein
https://www.theregister.com/2023/02/27/china_data_regulatory_intervention/
Excerpt:
“Starting in June, companies operating in China must undergo a regulatory intervention when sending data abroad, thanks to the Cyberspace Administration of China (CAC).”
|
European Commission bans TikTok from employees' phones Excerpt: “European Commission employees will have to remove TikTok from their work phones for security reasons, the European Union's executive body said Thursday.” Hackers steal Activision games and employee data Lorenzo Franceschi-Bicchierai Exceprt: “On Sunday, the cybersecurity and malware research group vx-underground published screenshots of data purportedly stolen from Activision, including the schedule of planned content to be released for the popular first-person shooter Call of Duty.” MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices Daily Ravie Lakhsman https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html?&web_view=true Excerpt: “A sophisticated botnet known as MyloBot has compromised thousands of systems, with most of them located in India, the U.S., Indonesia, and Iran.” Google will boost Android security through firmware hardening Bill Toulas Excerpt: “Google has started working to harden the security of Android at the firmware level, a component of the software stack that interacts directly with the various processors of a system on a chip (SoC).” Most vulnerabilities associated with ransomware are old https://www.helpnetsecurity.com/2023/02/22/vulnerabilities-ransomware-old/?web_view=true Excerpt: “Researchers identified 56 new vulnerabilities associated with ransomware threats among a total of 344 threats identified in 2022 – marking a 19% increase year-over-year.” Hackers Scored Data Center Logins for Some of the World's Biggest Companies Jordan Robertson Excerpt: “In an episode that underscores the vulnerability of global computer networks, hackers got ahold of login credentials for data centers in Asia used by some of the world’s biggest businesses, a potential bonanza for spying or sabotage, according to a cybersecurity research firm.” Datacenters in China, Singapore cracked by crims who then targeted tenants Simon Sharewood https://www.theregister.com/2023/02/23/datacenter_operators_in_china_singapore/ Excerpt: “Criminals have targeted datacenter operators in Singapore and China, tapping into their CCTV cameras, accessing their tenant lists and then attacking those customers.”
|