IT Security Weekend Catch Up – February 27, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. 1Password has none, KeePass has none… So why are there seven embedded trackers in the LastPass Android app?
  2. Boating industries – The Bénéteau Group falls victim to a cyber-attack
  3. Hackers break into ‘biochemical systems’ at Oxford University lab studying Covid-19
  4. The woman bulldozing video games’ toughest DRM
  5. You’ll not be able to send and receive messages if you don’t accept WhatsApp privacy policy before May 15th
  6. Twitter: Disclosing networks of state-linked information operations
  7. Technology and media entities join forces to create standards group aimed at building trust in online content
  8. Firefox 86 introduces Total Cookie Protection

For the more technical

  1. Multiple vulnerabilities in VMware ESXi and vSphere Client
  2. New WACUP release fixes a massive number of Winamp bugs
  3. Zoom on the keystrokes: Exploiting video calls for keystroke inference attacks (PDF)
  4. Researchers unmask hackers behind APOMacroSploit malware builder
  5. BitcoinPaperWallet ‘back door’ responsible for millions in missing funds, research suggests
  6. The state of stalkerware in 2020 (PDF)
  7. Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight
  8. Microsoft open sources CodeQL queries used to hunt for Solorigate activity
  9. SolarWinds update: Russian threat-actor re-used components from other attacks since 2017
  10. The story of Jian – How APT31 stole and used an unknown Equation Group 0-day
  11. The curious case of FlashHelperService
  12. Lazarus targets defense industry with ThreatNeedle
  13. Global Accellion data breaches linked to Clop ransomware gang
  14. Cyber criminals exploit Accellion FTA for data theft and extortion
  15. LazyScripter: From Empire to double RAT (PDF)
  16. Four additional threat groups seen targeting industrial organizations in 2020
  17. Vietnamese activists targeted by notorious hacking group
  18. Bitcoins, blockchains, and botnets

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *