IT Security Weekend Catch Up – December 12, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. WebAssembly and back again: Fine-grained sandboxing in Firefox 95
  2. Users with a pirated version of Office are getting a discount offer for a Microsoft 365 subscription
  3. Amazon is shutting down web ranking site Alexa.com
  4. New German government coalition promises not to buy exploits
  5. Swiss tech company boss accused of selling mobile network access for spying
  6. The popular family safety app Life360 is selling precise location data on its tens of millions of users
  7. Privacy predictions 2022
  8. Russia’s Internet censorship machine is going after Tor
  9. Responding to Tor censorship in Russia
  10. UK High Court reverses course, approves Julian Assange’s extradition to US
  11. FIN7 hacker trialed in Russia gets no prison time
  12. BitMart security breach
  13. Colorado energy company loses 25 years of data after cyberattack while still rebuilding network
  14. Operation Ironside Phase 2 to land second blow to organised crime

For the more technical

  1. Log4Shell: RCE 0-day exploit found in log4j2, a popular Java logging package
  2. Researchers release ‘vaccine’ for critical Log4Shell vulnerability
  3. Microsoft’s response to CVE-2021-44228 Apache Log4j 2
  4. Windows 10 RCE: The exploit is in the link
  5. QNAP warns of new crypto-miner targeting its NAS devices
  6. Security and privacy of VPNs running on Windows 10 (PDF)
  7. The hidden side of Seclogon: Abusing leaked handles to dump LSASS memory
  8. Tracking a P2P network related to TA505
  9. Awesome Telegram OSINT
  10. MANGA aka Dark Mirai-based campaign targets new TP-Link router RCE vulnerability
  11. When honey bees become murder hornets
  12. 1.6 million WordPress sites hit with 13.7 million attacks in 36 hours from 16,000 IPs
  13. Grafana fixes zero-day vulnerability after exploits spread over Twitter
  14. Malicious npm packages are after your Discord tokens – 17 new packages disclosed
  15. LaserShark: Establishing fast, bidirectional communication into air-gapped systems (PDF)
  16. Phishing attacks use QR codes to steal banking credentials
  17. The life cycle of phishing pages
  18. Emotet now drops Cobalt Strike, fast forwards ransomware attacks
  19. Magnat campaigns use malvertising to deliver information stealer, backdoor and malicious Chrome extension
  20. ALPHV BlackCat – This year’s most sophisticated ransomware
  21. New Yanluowang ransomware found to be code-signed, terminates database-related processes
  22. Confluence and GitLab servers targeted by new ransomware strain
  23. BlackCat: New Rust based ransomware borrowing BlackMatter’s configuration
  24. A Special Investigation exposing a ransomware group’s clear-web IP and their duplicate identities
  25. Chasing Shadows: A deep dive into the latest obfuscation methods being used by ShadowPad + more information
  26. Suspected Russian activity targeting government and business entities around the globe
  27. Is “KAX17” performing de-anonymization attacks against Tor users?
  28. Microsoft seizes domains used by Chinese cyber-espionage group Nickel (APT15)
  29. Karakurt rises from its lair
  30. Disrupting the Glupteba operation

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *