IT Security Weekend Catch Up – September 19, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Kaspersky: Law enforcement and government requests report (PDF)
  2. The new warrant: how US police mine Google for your location and search history
  3. Apple and Google go further than ever to appease Russia
  4. This US company sold iPhone hacking tools to UAE spies
  5. Ex-U.S. intel operatives admit hacking American networks for UAE
  6. Fake Walmart press release causes cryptocurrency price surge
  7. Hackers stole Puma source code, no customer data, company says
  8. Technology giant Olympus hit by BlackMatter ransomware
  9. Ransomware gang threatens to wipe decryption key if negotiator hired
  10. Anonymous hacks and leaks data from domain registrar Epik
  11. Dark web child pornography facilitator sentenced to 27 years in federal prison for conspiracy to advertise child pornography
  12. Amid vaccine mandates, fake vaccine certificates become a full blown industry
  13. TikTok is removing educational hacking videos

For the more technical

  1. Microsoft September 2021 Patch Tuesday
  2. Exploitation of the CVE-2021-40444 vulnerability in MSHTML
  3. Windows MSHTML zero-day exploits shared on hacking forums
  4. “Secret” agent exposes Azure customers to unauthorized code execution
  5. OMIGOD: Critical vulnerabilities in OMI affecting countless Azure customers
  6. SpookJS: Attacking Google Chrome’s Strict Site Isolation via speculative execution and type confusion
  7. HP OMEN gaming hub privilege escalation bug hits millions of gaming devices
  8. ForcedEntry: NSO Group iMessage zero-click exploit captured in the wild
  9. Analyzing the ForcedEntry zero-click iPhone exploit used by Pegasus
  10. Pegasus malware
  11. Vermilion Strike: Linux and Windows re-implementation of Cobalt Strike
  12. Black Lotus Labs uncovers Linux executables deployed as stealth Windows loaders
  13. Bitdefender offers free universal decryptor for REvil/Sodinokibi ransomware
  14. Researchers compile list of vulnerabilities abused by ransomware gangs
  15. Numando: Count once, code twice
  16. New Zloader infection chain comes with improved stealth and evasion mechanisms
  17. Flubot’s smishing campaigns under the microscope
  18. S.O.V.A. – A new Android Banking trojan with fowl intentions
  19. Operation Layover: How we tracked an attack on the aviation industry to five years of compromise

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *