IT Security Weekend Catch Up – February 26, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. India bans 54 Chinese apps on security concerns
  2. People whose NFTs were stolen are getting wildly different refunds from OpenSea
  3. Jobfished: the con that tricked dozens into working for a fake design agency
  4. Expeditors shuts down global operations after likely ransomware attack

For the more technical

  1. A command injection vulnerability in the web server of some Hikvision product
  2. Cracking a $2 million crypto wallet + video
  3. Oh Snap! More lemmings: Local privilege escalation vulnerability discovered in snap-confine (CVE-2021-44731)
  4. Horde Webmail 5.2.22 – Account takeover via email
  5. Gremlin – PDF cracker with PESEL passwords
  6. “Zero-days” without incident – compromising Angular via expired npm publisher email domains
  7. New malware capable of controlling social media accounts infects 5,000+ machines
  8. Mobile malware evolution 2021
  9. Xenomorph: A newly hatched banking trojan
  10. Financial cyberthreats in 2021
  11. The TrickBot saga’s finale has aired: Spinoff is already in the works
  12. TrickBot gang shuts down botnet after months of inactivity
  13. China implicated in prolonged supply chain attack targeting Taiwan financial sector
  14. The Bvp47 – a top-tier backdoor of US NSA Equation Group (PDF)
  15. Modified CryptBot infostealer being distributed
  16. Detecting Karakurt – an extortion focused threat actor
  17. Cyclops Blink: Malware analysis report (PDF)
  18. New Sandworm malware Cyclops Blink replaces VPNFilter (PDF)
  19. Dragos’s annual ICS/OT Cybersecurity Year in Review
  20. (Ex)change of pace: UNC2596 observed leveraging vulnerabilities to deploy Cuba ransomware
  21. Cobalt Strike being distributed to vulnerable MS-SQL servers
  22. HermeticWiper – new destructive malware used in cyber attacks on Ukraine
  23. Ukraine: Disk-wiping attacks precede Russian invasion
  24. EvilPlayout: Attack against Iran’s state broadcaster
  25. Iranian government-sponsored actors conduct cyber operations against global government and commercial networks
  26. CISA: Free cybersecurity services and tools

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *