IT Security Weekend Catch Up – May 23, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Humanity wastes about 500 years per day on CAPTCHAs. It’s time to end this madness
  2. The Internet Explorer 11 desktop application will be retired on June 15, 2022
  3. How the UK’s Online Safety Bill threatens Matrix
  4. Threema messenger wins against law enforcement authorities in federal court
  5. Amazon gave the FBI the shopping list of an anti-fascist activist
  6. Air India data breach impacts 4.5 million customers
  7. When hackers launched a cyberattack against Navalny supporters in April, they failed to cover their tracks
  8. An APT with no name
  9. Operator of WeLeakInfo database marketplace sentenced to two years in prison

For the more technical

  1. TsuNAME vulnerability and DDoS against DNS (PDF)
  2. Android Security Bulletin—May 2021
  3. CVE-2021-31166: HTTP protocol stack remote code execution vulnerability
  4. Report on University of Minnesota breach-of-trust incident
  5. undeSErVed trust – How to bypass AMD’s SEV(-ES) attestation
  6. Arbitrary code execution in the universal Turing machine (PDF)
  7. App Store stopped more than $1.5 billion in potentially fraudulent transactions in 2020
  8. Let’s set ice on fire: Hunting and detecting IcedID infections
  9. Mapping a vast and currently active BokBot network
  10. How Flubot targets Android phone users and their money
  11. Bizarro banking Trojan expands its attacks to Europe
  12. Ares malware: The grandson of the Kronos banking trojan
  13. The UNC2529 triple double: A trifecta phishing campaign
  14. CERT ESEC releases a paper on Babuk ransomware groups (PDF)
  15. PSA: Threat actors now double encrypting data with multiple ransomware strains
  16. Ransomware attack on health sector (PDF)
  17. Conti ransomware gives HSE Ireland free decryptor, still selling data
  18. Qlocker ransomware shuts down after extorting hundreds of QNAP users
  19. DarkSide ransomware has netted over $90 million in Bitcoin
  20. Massive malware campaign delivers fake ransomware
  21. Operation TunnelSnake
  22. Crypto-mining gangs are running amok on free cloud computing platforms
  23. When intrusions don’t align: A new water watering hole and Oldsmar

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *