Cybercrime Gang Uses Screenlogger to Identify High-Value Targets in US, Germany
A recently identified financially motivated threat actor is targeting companies in the United States and Germany with custom malware, including a screenlogger it uses for reconnaissance, Proofpoint reports. Tracked as TA866, the adversary appears to have started the infection campaign in October 2022, with the activity continuing into January 2023. As part of the campaign, […] more…Roaming Mantis reaches Europe
Roaming Mantis is a malicious campaign that targets Android devices and spreads mobile malware via smishing. We have been tracking Roaming Mantis since 2018, and published five blog posts about this campaign: Roaming Mantis uses DNS hijacking to infect Android smartphones Roaming Mantis dabbles in mining and phishing multilingually Roaming Mantis, part III Roaming Mantis, […] more…What’s in the latest Chrome update? A JavaScript jolt from the new Sparkplug compiler
Google is claiming that Chrome 91, the version that launched May 25, is up to 23% faster than its predecessors thanks to a new JavaScript compiler dubbed “Sparkplug.” The speed improvements made to Chrome will also apply, if they haven’t already, to other browsers that rely on the Chromium project’s technologies, including the V8 JavaScript […] more…Compliant, easy and actionable integration of VirusTotal in 3rd-party products – Welcome VT Augment
TL;DR: We are releasing an official, compliant and recommended method for displaying VirusTotal context in 3rd-party products and services, so that end-users can enjoy a single pane of glass experience when working with their tools of choice. Read the docs / See the demo (click on the VirusTotal icon next to each observable). Security analysts […] more…What’s in the latest Firefox update? 88 stymies shifty JavaScript tracker
Mozilla this week refreshed Firefox by releasing version 88, adding yet another anti-tracking defense, this one set up to stymie abuses of the JavaScript variable window.name. The company’s developers also patched 13 vulnerabilities, five of them labeled “High,” Firefox’s second-most-serious label. “We presume that with enough effort this could have been exploited to run arbitrary […] more…How secure is Java compared to other languages?
As with other aspects of cybersecurity, the level of programming language security depends on what we mean by “secure.” It’s true that Java has fewer identified vulnerabilities than some other commonly used languages. It’s also true that some newer languages appear more secure than Java, at least at first glance. Many of the security holes […] more…Exposing Modular Adware: How DealPly, IsErIk, and ManageX Persist in Systems
By RonJay Caragay, Fe Cureg, Ian Lagrazon, Erika Mendoza, and Jay Yaneza (Threats Analysts) Adware isn’t new and they don’t spark much interest. A lot of them are overlooked and underestimated because they’re not supposed to cause harm — as its name suggests, adware is advertising-supported software. However, we have constantly observed suspicious activities caused […] more…SAP NetWeaver AS Java CVE-2019-0391 Information Disclosure Vulnerability
Type: Vulnerability. SAP NetWeaver AS Java is prone to an information-disclosure vulnerability; fixes are available. more…IBM Liberty for Java for Cloud Multiple Security Vulnerabilities
Type: Vulnerability. IBM Liberty for Java for Cloud is prone to an information-disclosure and security bypass vulnerabilities; fixes are available. more…Oracle Java SE/Java SE Embedded CVE-2019-2996 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE and Java SE Embedded are prone to a remote vulnerability; fixes are available. more…Oracle Java SE CVE-2019-2977 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE is prone to a remote security vulnerability; fixes are available. more…Oracle Java SE/Java SE Embedded CVE-2019-2975 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE and Java SE Embedded are prone to a remote vulnerability; fixes are available. more…Oracle Java SE CVE-2019-2999 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE is prone to a remote security vulnerability; fixes are available. more…Oracle Java SE/Java SE Embedded CVE-2019-2949 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE and Java SE Embedded are prone to a remote vulnerability; fixes are available. more…Oracle Java SE/Java SE Embedded CVE-2019-2989 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE and Java SE Embedded are prone to a remote vulnerability; fixes are available. more…Oracle Java SE/Java SE Embedded CVE-2019-2958 Remote Security Vulnerability
Type: Vulnerability. Oracle Java SE and Java SE Embedded are prone to a remote vulnerability; fixes are available. more…More information
- Managing data trash: 6 tools to improve privacy and free space
- Duqu written using old school C++
- Intel Says to Stop Applying Problematic Spectre, Meltdown Patch
- News in brief: Germany to levy €50m fines on social media; Facebook drone success; hacker offers Petya help
- When password security questions aren’t secure
- Secretive Palantir Lifts Veil Before Wall Street Stock Sale
- HEI Hotels reports point-of-sale terminals breach
- Preventing sql injections
- Chinese government shuns Windows 8 – security, economy or politics?
- Microsoft: International cyber-pacts can lead to less malware