IT Security Weekend Catch Up – November 19, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Bitcoin creator Satoshi Nakamoto could be unmasked at Florida trial
  2. Evil Corp: ‘My hunt for the world’s most wanted hackers’
  3. 1st person to crack Bitfinex, multiple hacking scams: Karnataka hacker’s tell-all statement to police
  4. US detains crypto-exchange exec for helping Ryuk ransomware gang launder profits
  5. 7 million Robinhood user email addresses for sale on hacker forum
  6. Six Palestinian human rights defenders hacked with NSO Group’s Pegasus Spyware
  7. The software that studies your Facebook friends to predict who may commit a crime

For the more technical

  1. Linux has a serious security problem that once again enables DNS cache poisoning (PDF)
  2. Blacksmith – a new kind of Rowhammer attack
  3. GitHub’s commitment to npm ecosystem security
  4. Europe’s top 10 pharma manufacturers all have vulnerable web applications
  5. Practical HTTP header smuggling: Sneaking past reverse proxies to attack AWS and beyond
  6. Design issues of modern EDRs: bypassing ETW-based solutions
  7. An APT group exploiting a 0-day in FatPipe WARP, MPVPN, and IPVPN software
  8. An investigation into SS7 Exploitation Services on the Dark Web
  9. Cloudflare blocks an almost 2 Tbps multi-vector DDoS attack
  10. Fake ransomware infection spooks website owners
  11. Exchange exploit leads to domain wide ransomware
  12. Vulnerability intelligence: What’s the word in dark web forums?
  13. RAMP ransomware’s apparent overture to Chinese threat actors
  14. Conti ransomware group in-depth analysis (PDF)
  15. New ransomware actor uses password-protected archives to bypass encryption protection
  16. SharkBot: a new generation of Android trojans is targeting banks in Europe
  17. Emotet botnet returns after law enforcement mass-uninstall operation
  18. Guess who’s back
  19. UNC1151 assessed with high confidence to have links to Belarus, Ghostwriter campaign aligned with Belarusian government interests
  20. Uncovering MosesStaff techniques: Ideology over money
  21. Who are latest targets of cyber group Lyceum?
  22. Iranian targeting of IT sector on the rise
  23. RedCurl: The awakening (PDF)
  24. Israeli firm’s spyware linked to attacks on websites in UK and Middle East
  25. Hunter becomes hunted: Zebra2104 hides a herd of malware
  26. LAPD: Hidden spy camera detection using smartphone time-of-flight sensors (PDF)
  27. How do I protect an iOS app from reverse engineering?
  28. iPhone apps can tell many things about you through the accelerometer
  29. iPhone acquisition methods compared

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *