IT Security Weekend Catch Up – December 4, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Ransomware gang targets Belgian municipality, hits police instead
  2. Guatemala’s Foreign Ministry investigating ransomware attack
  3. Apple limits iPhone file-sharing tool used for protests in China
  4. Action against criminal website that offered ‘spoofing’ services to fraudsters: 142 arrests
  5. Google files lawsuit accusing ‘G Verifier’ scammers of impersonating company
  6. Operation across Africa identifies cyber-criminals and at-risk online infrastructure

For the more technical

  1. OpenSSL usage in UEFI firmware exposes weakness in SBOMs
  2. Vedere Labs discloses three new vulnerabilities affecting OT products
  3. Email Graffiti: hacking old email
  4. Analysis on Docker Hub malicious images: Attacks through public container images
  5. Counting unique visitors without using cookies, UIDs or fingerprinting
  6. CashRewindo: How to age domains for an investment scam like fine scotch
  7. New details on commercial spyware vendor Variston
  8. Detecting and fingerprinting infostealer Malware-as-a-Service platforms
  9. [VIDEO] Virus.Win32.HLLP.Toadie – how it worked
  10. Schoolyard Bully trojan Facebook credential stealer
  11. Bahamut cybermercenary group targets Android users with fake VPN apps
  12. Attacker uses a popular TikTok challenge to lure users into installing malicious package
  13. DuckLogs – new malware strain spotted in the wild
  14. Lookout Discovers hundreds of predatory loan apps on Google Play and Apple App Store
  15. Malicious Android app found powering account creation service
  16. Aqua Nautilus discovers Redigo — new Redis backdoor malware
  17. Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin
  18. LockBit 3.0 ‘Black’ attacks and leaks reveal wormable capabilities and tooling
  19. Lifting the haze on China-nexus espionage in Southeast Asia
  20. Accidentally crashing a botnet

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *