IT Security Weekend Catch Up – December 5, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Facebook took down a China-linked COVID-19 disinformation campaign
  2. Hackers steal $119M from ‘Web3’ crypto project with old school attack
  3. When Russia helped the U.S. nab cybercriminals
  4. The fall of a Russian cyberexecutive who went against the Kremlin
  5. U.S. State Department phones hacked with Israeli company spyware
  6. FBI document shows what data can be obtained from encrypted messaging apps
  7. Former Ubiquiti employee charged with hacking and extorting company
  8. European Money Mule Action leads to 1 803 arrests
  9. Russian man sentenced for providing ‘bulletproof hosting’ for cybercriminals
  10. FBI says the Cuba ransomware gang made $43.9 million from ransom payments
  11. Russian internet watchdog announces ban of six more VPN products

For the more technical

  1. This shouldn’t have happened: A vulnerability postmortem
  2. Micropatching unpatched local privilege escalation in Mobile Device Management Service (CVE-2021-24084 / 0day)
  3. Multiple security vulnerabilities fixed in Hide My WP by wpWave
  4. Researchers discover 14 new data-stealing web browser attacks
  5. Concluding Project Memoria – Lessons learned after 18 Months of vulnerability research (PDF)
  6. DNS cache poisoning attack: Resurrections with side channels (PDF)
  7. Hackers welcome: Major security test uncovers vulnerabilities in all common Wi-Fi routers
  8. 8-year-old HP printer vulnerability affects 150 printer models
  9. A mysterious threat actor is running hundreds of malicious Tor relays
  10. Microsoft Defender scares admins with Emotet false positives
  11. EwDoor botnet is attacking AT&T customers
  12. Smishing botnets going viral in Iran
  13. 300.000+ infections via droppers on Google Play store
  14. Scammers exploit Omicron fears in new COVID‑19 phishing campaign
  15. ProxyShell exploitation leads to BlackByte ransomware
  16. ScarCruft surveilling North Korean defectors and human rights activists
  17. APT expands attack on ManageEngine with active campaign against ServiceDesk Plus
  18. NginRAT parasite targets Nginx
  19. Injection is the New Black: Novel RTF Template Inject technique poised for widespread adoption beyond APT actors
  20. Triple threat: North Korea-aligned TA406 scams, spies, and steals (PDF)
  21. APT annual review 2021

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *