Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Chatcontrol: European Parliament approves mass surveillance of private communications
- Robbing the Xbox vault: Inside a $10 million gift card cheat
- HSE secures orders to get details of those who downloaded cyber attack information
- GETTR leaks email addresses and user details in API security snafu
- Cyber-attack disrupts Iran’s national railway system
- WSSC Water investigating ransomware cyberattack
- Spike in “chain gang” destructive attacks on ATMs
- Suspected hacker Dr HeX arrested over cybercrime, bank fraud impacting thousands
For the more technical
- Quick look at CVE-2021-1675 & CVE-2021-34527 (aka PrintNightmare)
- Microsoft’s incomplete PrintNightmare patch fails to fix vulnerability
- Android Security Bulletin – July 2021
- The new ProtonMail has passed its independent security audit (PDF)
- How to defend against DNS exfiltration in AWS?
- Kaspersky Password Manager: All your passwords are belong to us
- Third-party code comes with some baggage
- Ransomwhere project wants to create a database of past ransomware payments
- Conti unpacked. Understanding ransomware development as a response to detection
- REvil ransomware attack against MSPs and its clients around the world
- Lazarus campaign TTPs and evolution
- InSideCopy: How this APT continues to evolve its arsenal (PDF)
- WildPressure targets the macOS platform
- Bandidos at large: A spying campaign in Latin America
- Android crypto mining scams
- New investigation shows global human rights harm of NSO Group’s spyware
- Global phishing campaign targets energy sector and its suppliers
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.