IT Security Weekend Catch Up – March 14, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. What you need to know before installing Clubhouse
  2. How IT security leaders can unlock the potential of their teams
  3. Mapping internet shutdowns around the world
  4. Copying China’s online blockade
  5. Internet providers tracking sites we visit in secretive trial
  6. Hackers breach thousands of security cameras, exposing Tesla, jails, hospitals
  7. Cracking of encrypted messaging service dealt major blow to organised crime + more information
  8. The FBI should stop attacking encryption and tell congress about all the encrypted phones it’s already hacking into

For the more technical

  1. Zero-day vulnerabilities in Microsoft Exchange Server
  2. Reproducing the Microsoft Exchange Proxylogon exploit chain
  3. Researcher publishes code to exploit Microsoft Exchange vulnerabilities on Github
  4. Barracuda detects increased probing for Microsoft Exchange vulnerabilities
  5. Microsoft Exchange Server attack timeline
  6. Analyzing attacks against Microsoft Exchange Server with China Chopper webshells
  7. Ransomware now attacks Microsoft Exchange servers with ProxyLogon exploits
  8. Exchange servers under siege from at least 10 APT groups
  9. Supernova webshell deployment linked to Spiral threat group
  10. Internet Explorer memory corruption vulnerability (CVE-2021-26411)
  11. Vulnerabilities in Microsoft DNS Server
  12. Multiple vulnerabilities in Netgear ProSAFE Plus JGS516PE / GS116Ev2 switches
  13. How we could have listened to anyone’s call recordings
  14. QNAP NAS users, make sure you check your system
  15. Sex in the digital era: How secure are smart sex toys?
  16. Image file trickery: Fake icon delivers NanoCore
  17. [VIDEO] Mobile banking malware
  18. Avast researchers obtain Ursnif victim data: Reach out to help victims
  19. Clast82 – A new dropper on Google Play dropping the AlienBot banker and MRAT
  20. Fin8 group is back in business with improved BADHATCH kit
  21. Ad blocker with miner included
  22. How six advanced persistent threat-connected Chinese universities are advancing AI research
  23. Lessons learned after Google nearly killed my site
  24. 7-Zip developer releases the first official Linux version
  25. Google’s FLoC is a terrible idea
  26. Prime+Probe 1, JavaScript 0: Overcoming browser-based side-channel defenses
  27. The Hitchhiker’s Guide to Online Anonymity (PDF)
  28. How to poison the data that Big Tech uses to surveil you
  29. Privacy-friendly video embeds

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *