Mobile security firm Zimperium is warning of an Android trojan that may have stolen Facebook credentials from a large number of users.
One Year Later: Log4Shell Remediation Slow, Painful Slog
Almost exactly a year after the Log4Shell security crisis sent defenders scrambling to reduce attack surfaces, new data shows that remediation has been a long, slow, painful slog for most organizations around the world.
Investors Bet $31 Million on Sphere for Identity Hygiene Tech
Venture capital investors have invested another $31 million into Sphere Technology Solutions, a New Jersey startup building technology to help defenders manage identities and access to sensitive data.
Self-Replicating Malware Used by Chinese Cyberspies Spreads via USB Drives
A China-linked cyberespionage group tracked as UNC4191 has been observed using self-replicating malware on USB drives to infect targets, and the technique could allow them to steal data from air-gapped systems, Google-owned Mandiant reports.
Project Zero Flags ‘Patch Gap’ Problems on Android
Vulnerability researchers at Google Project Zero are calling attention to the ongoing “patch-gap” problem in the Android ecosystem, warning that downstream vendors continue to be tardy at delivering security fixes to Android-powered devices.
Hack-for-Hire Group Targets Android Users With Malicious VPN Apps
A hack-for-hire group known as Bahamut has been targeting Android users with trojanized versions of legitimate VPN applications, ESET reports.
Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse
Security researchers at Proofpoint are calling attention to the discovery of a commercial red-teaming tool called Nighthawk, warning that the command-and-control framework is likely to be abused by threat actors.
Multi-Purpose Botnet and Infostealer ‘Aurora’ Rising to Fame
Aurora, a multi-purpose botnet being advertised on underground forums since April, has been adopted by multiple cybercriminals over the past few months, cybersecurity firm Sekoia.io reports.
Microsoft Warns of Cybercrime Group Delivering Royal Ransomware, Other Malware
A threat actor tracked as DEV-0569 and known for the distribution of various malicious payloads was recently observed updating its delivery methods, Microsoft warns.
Omron PLC Vulnerability Exploited by Sophisticated ICS Malware
A critical vulnerability has not received the attention it deserves