IT Security Weekend Catch Up – April 18, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Texas man charged with intent to attack data centers
  2. Hacking startup ‘Azimuth Security’ unlocked the San Bernardino iPhone
  3. White House formally blames Russian intelligence service SVR for SolarWinds hack
  4. Sanctioned firm accused of helping Russian intelligence was part of Microsoft’s early vuln access program — MAPP
  5. Dutch supermarkets run out of cheese after ransomware attack
  6. Mexico will require new cell phone users to provide biometric data to the government
  7. The EU is considering a ban on AI for mass surveillance and social credit scores
  8. European tech companies warn of lowering data protection levels in the EU

For the more technical

  1. Google Project Zero testing 30-day grace period on bug details to boost user patching
  2. Google Chrome, Microsoft Edge zero-day vulnerability shared on Twitter
  3. Second Google Chrome zero-day exploit dropped on twitter this week
  4. NAME:WRECK: Nine DNS vulnerabilities found in four open source TCP/IP stacks
  5. NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities
  6. Microsoft April 2021 Patch Tuesday
  7. Zero-day vulnerability in Desktop Window Manager (CVE-2021-28310) used in the wild
  8. Justice Department announces court-authorized effort to disrupt exploitation of Microsoft Exchange Server vulnerabilities
  9. Compromised Exchange server hosting cryptojacker targeting other Exchange servers
  10. Malicious code in APKPure app
  11. Investigating a unique “form” of email delivery for IcedID malware
  12. Ryuk ransomware anatomy of an attack in 2021
  13. Meet the ransomware gang behind one of the biggest supply chain hacks ever
  14. Analysis of the world’s first ransomware cartel (PDF)
  15. Are the hackers all Russian?
  16. Cybercrime groups are selling their hacking skills. Some countries are buying
  17. FireEye report: M-Trends 2021
  18. Estonian Internal Security Service annual review 2020-2021 (PDF)
  19. [VIDEO] Operational Threat Intelligence – webinar by Joe Slowik
  20. LKRG 0.9.0 has been released
  21. DuckDuckGo announces plans to block Google’s FLoC
  22. Firefox, Edge, Safari, and other browsers won’t use Google’s new FLoC ad tech

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *