Stay safe online - 2022-01-26

Major code execution bug in Imunify360 Linux server got patched

The vulnerability exploitation could be used to hijack web servers. More
News Web browsers and vulnerabilities   November 23, 2021  

Facebook Messenger and Instagram E2E encryption delayed until 2023

The default end-to-end encryption across messaging services pushed back by a year at least. More
News Security   November 22, 2021  

Spear-phishing attacks abuse the Glitch platform to steal credentials

Glitch service abused in attacks that target Middle East workers from major corporations. More
News Spam and phishing   November 19, 2021  

Microsoft and US, UK law enforcement warns about Iranian hacker groups

Hacker groups reportedly exploiting Microsoft, Fortinet flaws and increase the use of ransomware on targets. More
News Security   November 18, 2021  

New criminal tactics: exploit-as-a-service and buying zero-day flaws

Ransomware gangs raised funds to buy zero-day flaws and move to advanced exploit-as-a-service operations. More
News Security   November 17, 2021  

Moses Staff targets Israeli entities with ransomless encryption attack

Moses Staff hacker group launched the destructive malware attacks against political organizations in Israel. More
News Viruses and parasites   November 16, 2021  

Hackers enter the FBI email system to send out fake security warnings

Legitimate-looking emails with bizarre cybersecurity warnings from FBI servers got sent to people. More
News Security   November 15, 2021  

Google warns about Mac zero-day flaw used against Hong Kong users already

Threat actors created Mac vulnerability that was used for the past three months to collect keystrokes, screenshots. More
News Web browsers and vulnerabilities   November 12, 2021  

Void Balaur hackers-for-hire collect political and commercial victims

Researchers indicate the hacker group working for money that been actively attacking since 2015. More
News Security   November 11, 2021  

Nucleus:13 flaws affect devices used in the medical and aerospace sectors

13 critical vulnerabilities discovered in the Nucleus TCP/IP stack. More
News Security   November 10, 2021  

7 million Robinhood customers impacted by the data breach

Trading app hack exposes the most extensive data of 300 users. More
News Security   November 09, 2021  

Operation Cyclone ending with Clop ransomware gang arrests

A thirty-month international operation targeted ransomware creators and ended in six arrests in Ukraine back in June. More
News Security   November 08, 2021  

Magecart steals credit information while bypassing detection

Threat actors behind Magecart credit card skimmer use browser script to evade the sandbox detection and malware researchers. More
News Spam and phishing   November 05, 2021  

New Tortilla threat actor: Babuk ransomware targeting Exchange servers

Researchers report the new attack aiming to exploit Microsoft Exchange ProxyShell vulnerabilities for ransomware. More
News Security   November 04, 2021  

Facebook Face Recognition shutdown: over billion of faceprints deleted

Facebook announced to no longer use the face recognition system, so the database of billion facial profiles set to be deleted. More
News   November 03, 2021