Sphinx Malware Returns to Riddle U.S. Targets
The banking trojan has upgraded and is seeing a resurgence on the back of coronavirus stimulus payment themes.
How to filter (spam) emails with the roundcube
Easily manage email Filters from the RoundCube.
Log in to your email account via RoundCube and go to Settings->Filters
Video instructions
Black Hat USA, DEF CON 28 Go Virtual
Due to the coronavirus pandemic, there will be no in-person Black Hat USA or DEF CON conferences this year.
Hackers Breach 3.5 Million MobiFriends Dating App Credentials
The emails, hashed passwords and usernames of 3.5 million users of the dating app MobiFriends were put up for sale on an underground forum.
Report: Microsoft’s GitHub Account Gets Hacked
The Shiny Hunters hacking group said it stole 500 GB of data from the tech giant’s repositories on the developer platform, which it owns.
Naikon’s Aria
Our colleagues at Checkpoint put together a fine research writeup on some Naikon resources and activity related to “aria-body” that we detected in 2017 and similarly reported in 2018. To supplement their research findings, we are summarizing and publishing portions of the findings reported in our June 2018 “Naikon’s New AR Backdoor Deployment to Southeast…
Podcast: Shifting Cloud Security Left With Infrastructure-as-Code
Companies are looking to “shift left” with Infrastructure-as-Code (IaC) security capabilities to improve developer productivity, avoid misconfigurations and prevent policy violations.
Blue Mockingbird Monero-Mining Campaign Exploits Web Apps
The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise.
Cisco Fixes High-Severity Flaws In Firepower Security Software, ASA
Cisco has fixed 12 high-severity flaws in its Adaptive Security Appliance software and Firepower Threat Defense software.
Zoom Beefs Up End-to-End Encryption to Thwart ‘Zoombombers’
As the company continues to battle security woes, it has acquired Keybase to boost security and privacy. A full cryptographic draft architecture will be available on May 22.