Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Former Apple engineer says the button on iPhones asking apps not to track you is a ‘dud’ that gives users a ‘false sense of privacy’
- Portpass app may have exposed hundreds of thousands of users’ personal data
- Facebook grew Marketplace to 1 billion users. Now scammers are using it to target people around the world
- Kidnapping, assassination and a London shoot-out: Inside the CIA’s secret war plans against WikiLeaks
- The Yahoo story about all the things CIA wasn’t allowed to do against WikiLeaks
- Snowden documents reveal scope of secrets exposed to China in 2001 spy plane incident
- WireX DDoS botnet admin charged for attacking hotel chain
For the more technical
- $8,000 bug bounty highlight: XSS to RCE in the Opera browser
- Hackers exploiting critical VMware vCenter CVE-2021-22005 bug
- How to steal money from victims’ contactless Apple Pay wallets (PDF)
- Hackers rob thousands of Coinbase customers using MFA flaw
- Fingerprinting Windows build numbers
- BloodyStealer and gaming assets for sale
- BluStealer: from SpyEx to ThunderFox
- A wolf in sheep’s clothing: Actors spread malware by leveraging trust in Amnesty International and fear of Pegasus
- FinSpy: unseen findings
- FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor
- Threat analysis report: Inside the destructive PYSA ransomware
- DarkHalo after SolarWinds: the Tomiris connection
- GhostEmperor: From ProxyLogon to kernel mode (PDF)
- Winter vivern – all summer
- 4 Chinese APT groups identified targeting mail server of Afghan telecommunications firm Roshan
- ERMAC – another Cerberus reborn
- GriftHorse Android trojan steals millions from over 10 million victims globally
- Selecting and hardening remote access VPN solutions (PDF)
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.