Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- WhatsApp facing up to €50M privacy fine
- South African government releases its own browser just to re-enable Flash support
- Hacker leaks data of 2.28 million dating site users
- World’s most dangerous malware EMOTET disrupted through global action
- NetWalker defendant charged, dark web resource disabled, nearly $500,000 seized
For the more technical
- About the security content of iOS 14.4 and iPadOS 14.4
- CVE-2021-3156: Heap-based buffer overflow in Sudo (Baron Samedit)
- Windows 7 TCP/IP hijacking
- NordVPN: Possible RCE through Windows Custom Protocol on Windows client
- TikTok fixes privacy issue discovered by Check Point Research
- Rooting Bosch lcn2kai Headunit
- Process Herpaderping
- NAT Slipstreaming v2.0: New attack variant can expose all internal network devices to the Internet
- Data security on mobile devices
- New year, new version of DanaBot
- Trickbot – new year, old lure
- A new wormable Android malware spreading through WhatsApp
- New campaign targeting security researchers
- DPRK malware targeting security researchers
- ZINC attacks against security researchers
- SonicWall firewall maker hacked using zero-day in its VPN device
- Finding SUNBURST victims and targets by using passive DNS, OSINT
- SunBurst industrial victims
- “Lebanese Cedar” APT. Global Lebanese espionage campaign leveraging web servers (PDF)
- DreamBus botnet – technical analysis
- Nefilim ransomware attack uses “ghost” credentials
- Stack Overflow: A deeper dive into our May 2019 security incident
- LogoKit: Simple, effective, and deceptive
- The Wordfence 2020 WordPress Threat Report
- Application Guard for Office for admins
- Windows 10X feature will prevent unauthorized factory resets
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.