June 2022 – Page 24 – PossibleThreat Articles

Credit to Author: Paul Oliveria| Date: Wed, 01 Jun 2022 18:00:00 +0000

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICpy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.

The post Using Python to unearth a goldmine of threat intelligence from leaked chat logs appeared first on Microsoft Security Blog.

MalwareBytes Security

Phishing mail claims a 3D Secure upgrade is required

June 1, 2022 0 Comments 3d secure, fake, phish, phishing, QR code, Scam, scams

Credit to Author: Christopher Boyd| Date: Wed, 01 Jun 2022 16:40:54 +0000

We look at a mail claiming to offer enhanced online payment security. Just what is that QR code doing?

The post Phishing mail claims a 3D Secure upgrade is required appeared first on Malwarebytes Labs.

MalwareBytes Security

FAQ: Mitigating Microsoft Office’s ‘Follina’ zero-day

June 1, 2022 0 Comments cve-2022-30190, Exploits and vulnerabilities, follina, zero day

Credit to Author: Threat Intelligence Team| Date: Wed, 01 Jun 2022 16:36:44 +0000

FAQ for the new Follina zero-day vulnerability. What you can do to protect your computers right now.

The post FAQ: Mitigating Microsoft Office’s ‘Follina’ zero-day appeared first on Malwarebytes Labs.

Security Sophos

Analyzing CVE-2022-0778: When Square Root Results in a Denial of Service

June 1, 2022 0 Comments Cryptography, DOS, OpenSSL, sophos secops, SophosLabs Uncut, threat research

Credit to Author: hardikshah| Date: Wed, 01 Jun 2022 14:31:06 +0000

How could a humble SSL certificate entirely gridlock a system? Walk with us through the math

Security Sophos

Firefox 101 is out, this time with no 0-day scares (but update anyway!)

June 1, 2022 0 Comments firefox, Mozilla, Patch, vulnerability

Credit to Author: Paul Ducklin| Date: Wed, 01 Jun 2022 14:31:19 +0000

After an intriguing month of Firefox releases, here’s one with a bit less drama, probably to the collective relief of Mozilla’s coders.

Security Wired

The Race to Hide Your Voice

June 1, 2022 0 Comments Security, Security / Privacy

Credit to Author: Matt Burgess| Date: Wed, 01 Jun 2022 11:00:00 +0000

Voice recognition—and data collection—have boomed in recent years. Researchers are figuring out how to protect your privacy.

MalwareBytes Security

WhatsApp accounts hijacked by call forwarding

June 1, 2022 0 Comments **67*, *405*, call forwarding, fraud, otp, Social engineering, stolen accounts, two-step verification, whatsapp

Credit to Author: Pieter Arntz| Date: Wed, 01 Jun 2022 13:04:48 +0000

Threat actors are using a new method to take over WhatsApp accounts. It starts with tricking the victim into forwarding their calls.

The post WhatsApp accounts hijacked by call forwarding appeared first on Malwarebytes Labs.

Security Sophos

The State of Ransomware in Healthcare 2022

June 1, 2022 0 Comments healthcare, products & services, Ransomware, Reports

Credit to Author: Doug Aamoth| Date: Wed, 01 Jun 2022 11:00:43 +0000

Get the latest insights into ransomware attacks, ransom payments, and the fast-changing cyber insurance healthcare market over the last year.

Security TrendMicro

AvosLocker Ransomware Variant Abuses Driver File to Disable Antivirus, Scans for Log4shell

June 1, 2022 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network, trend micro research : ransomware

Credit to Author: Christoper Ordonez| Date: Mon, 02 May 2022 00:00:00 +0000

We found an AvosLocker ransomware variant using a legitimate antivirus component to disable detection and blocking solutions.

Security TrendMicro

New Linux-Based Ransomware Cheerscrypt Targeting ESXi Devices Linked to Leaked Babuk Source Code

June 1, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : ransomware, trend micro research : research

Credit to Author: Arianne Dela Cruz| Date: Wed, 25 May 2022 00:00:00 +0000

New findings showed that Cheerscrypt, a new Linux-based ransomware variant that compromises ESXi servers, was derived from the leaked Babuk source code. We discuss our analysis in this report.