IT Security Weekend Catch Up – April 30, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Google: New cookie choices in Europe
  2. Apple App Store appears to be widely removing outdated apps
  3. French hospital group disconnects Internet after hackers steal data
  4. Coca-Cola investigates hackers’ claims of breach and data theft
  5. Five hacker groups that attack Ukraine the most

For the more technical

  1. More zero-days exploited in 2021 than ever before
  2. 2021 top routinely exploited vulnerabilities
  3. Microsoft finds new elevation of privilege Linux vulnerability, Nimbuspwn
  4. Many medical device makers skimp on security practices
  5. Cloudflare blocks 15M rps HTTPS DDoS attack
  6. DDoS attacks in Q1 2022
  7. Q1 2022 DDoS attacks and BGP incidents
  8. Google Play: How we fought bad apps and developers in 2021
  9. The ink-stained trail of GoldBackdoor (PDF)
  10. Exposing a campaign that intimidated researchers and journalists
  11. New Core Impact backdoor delivered via VMWare vulnerability
  12. Emotet malware infects users again after fixing broken installer
  13. Prynt Stealer spotted in the wild
  14. Quantum ransomware
  15. Onyx ransomware destroys files instead of encrypting them
  16. New Black Basta ransomware springs into action with a dozen breaches
  17. This isn’t optimus prime’s Bumblebee but it’s still transforming
  18. RedLine stealer resurfaces in fresh RIG exploit kit campaign
  19. An overview of Russia’s cyberattack activity in Ukraine (PDF)
  20. Tough times for Ukrainian honeypot?
  21. Ukraine targeted by DDoS attacks from compromised WordPress sites
  22. Bronze President targets Russian speakers with updated PlugX
  23. New APT group Earth Berberoka targets gambling websites with old and new malware
  24. A lookback under the TA410 umbrella: Its cyberespionage TTPs and activity
  25. LAPSUS$: Recent techniques, tactics and procedures
  26. Assembling the Russian nesting doll: UNC2452 merged into APT29
  27. APT trends report Q1 2022
  28. [FR] FIN7 report gives great insight into the cybercrime ecosystem (PDF)

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *