Social engineering attacks have been a longstanding concern for both individuals and organizations alike. The trend, as we know it, is…
Month: July 2021
LemonDuck no longer settles for breadcrumbs
LemonDuck has evolved from a Monero cryptominer into LemonCat, a Trojan that specializes in backdoor installation, credential and data theft, and…
Microsoft provides more mitigation instructions for the PetitPotam attack
In a revision of KnowledgeBase article KB5005413, Microsoft has provided more elaborate mitigation instructions for the PetitPotam attacks that were disclosed…
UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root
Researchers at RandoriSec have found serious vulnerabilities in the firmware provided by UDP Technology to Geutebrück and many other IP camera…
The Olympics: a timeline of scams, hacks, and malware
The 2020 Olympics are, after a bit of a delayed start, officially in full swing. So too is the possibility for…
The Clubhouse database “breach” is likely a non-breach. Here’s why.
Before the work week ended last week Friday, a security researcher found a leak of what is claimed to be full…
Kaseya Unitrends has unpatched vulnerabilities that could help attackers expand a breach
It must not be easy to work at Kaseya right now. While they are working as hard as they can to…
OSX.XLoader hides little except its main purpose: What we learned in the installation process
Last week, Check Point Research described a new Mac variant of malware they call XLoader. It was identified as being the…
A week in security (July 19 – July 25)
Last week on Malwarebytes Labs: Other cybersecurity news Stay safe, everyone!
CNA legal filings lift the curtain on a Phoenix CryptoLocker ransomware attack
Two months after fully restoring its systems, CNA Financial, the leading US insurance company that was attacked by a group using…