IT Security Weekend Catch Up – October 31, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Here’s the FBI’s internal guide for getting data from AT&T, T-Mobile, Verizon
  2. Location data firm got GPS data from apps even when people opted out
  3. 12 targeted for involvement in ransomware attacks against critical infrastructure
  4. Core member of ransomware gang identified
  5. Europol investigation busts 150 ‘high value’ darknet vendors

For the more technical

  1. Using Kerberos for authentication relay attacks
  2. Windows exploitation tricks: Relaying DCOM authentication
  3. Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection
  4. Researcher earns $2 million for critical vulnerability in Polygon
  5. 1,000,000 sites affected by OptinMonster vulnerabilities
  6. Site deletion vulnerability in Hashthemes plugin
  7. Mozilla blocks malicious add-ons installed by 455K Firefox users
  8. Cracking WiFi at scale with one simple trick
  9. A handshake with MySQL bots
  10. Hackers are exploiting a vulnerability in popular billing software to deploy ransomware
  11. Fake npm Roblox API package installs ransomware and has a spooky surprise
  12. Rooting malware makes a comeback: Lookout discovers global campaign
  13. Avast releases decryptor for AtomSilo and LockFile ransomware
  14. Squirrelwaffle leverages malspam to deliver Qakbot, Cobalt Strike
  15. New York Times journalist Ben Hubbard hacked with Pegasus after reporting on previous hacking attempts + more information
  16. UltimaSMS: A widespread premium SMS scam on the Google Play Store
  17. APT trends report Q3 2021
  18. New activity from Russian actor Nobelium + technical guidance
  19. DDoS attacks hit multiple email providers

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *