RSS_Virtulization

Recently we observed that part of the REvil ransomware infrastructure was up and running again, now we can confirm that they hit new victims. On September 7, the servers of the REvil ransomware gang were back online after around two months since their shutdown. The circumstance was immediately noted by many researchers, me too. The dark web leak site of the ransomware gang, also known as the Happy Blog, is back online, while the site…

Microsoft addresses 60 CVEs in its September 2021 Patch Tuesday release, along with patches for a critical vulnerability in its MSHTML (Trident) engine that was first disclosed in an out-of-band advisory on September 7. 4Critical 56Important 0Moderate 0Low Microsoft patched 60 CVEs in the September 2021 Patch Tuesday release, including four CVEs rated as critical and 56 rated as important. This is the seventh time in 2021 that Microsoft has…

Well-known virtual private network (VPN) provider ExpressVPN is to be acquired by Israeli-British cybersecurity company Kape Technologies in a deal worth almost $1bn. The acquisition, which will involve $936m in shares and cash, was announced on September 13. Kape Technologies said the deal represents a “key milestone” in the booming arena of digital privacy. In a statement released Monday, Kape said that it was joining forces with ExpressVPN “to create a premium consumer privacy and security player in the…

Tag CVE Count CVEs Microsoft Edge for Android 1 CVE-2021-26439 Windows BitLocker 1 CVE-2021-38632 Microsoft Office Word 1 CVE-2021-38656 Windows Key Storage Provider 1 CVE-2021-38624 Windows Installer 2 CVE-2021-36961, CVE-2021-36962 Visual Studio 3 CVE-2021-36952, CVE-2021-26437, CVE-2021-26434 Windows Common Log File System Driver 3 CVE-2021-36955, CVE-2021-36963, CVE-2021-38633 Azure Open Management Infrastructure 4 CVE-2021-38645, CVE-2021-38647, CVE-2021-38648, CVE-2021-38649 Microsoft Office SharePoint 2 CVE-2021-38651, CVE-2021-38652 Windows Authenticode 1 CVE-2021-36959 Microsoft Windows Codecs Library 1 CVE-2021-38661 Windows Redirected Drive Buffering…

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. and Spain. Researchers from cybersecurity firm ThreatFabric have spotted in the beginning of August a new Android banking trojan, dubbed SOVA, that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. and Spain. The name SOVA comes from the Russian word for owl. The malware allows attacker to gather sensitive data from infected devices,…

An information technology expert employed by a New York county has been arrested on suspicion of mining crypto-currency at work. Christopher Naples is accused of covertly installing dozens of machines throughout his workplace and using them to mine Bitcoin and other types of crypto-currency as part of a secret illegal money-making scheme.  Naples, who lives in Mattituck, New York, was hired by Suffolk County back in 2000. His current title is Assistant Manager of Information Technology Operations…

  Women alone can be powerful. But women who empower each other can have an even greater impact. In this edition of our blog, Zeal Somani, who was greatly influenced by her grandmother and by her female colleagues, explains that forming close connections with other women and channeling the power of collaboration are key to overcoming unconscious bias that women face in the workplace.

Social media is overflowing with quizzes, surveys and opportunities to tell the world about yourself. Learn why you should skip these to protect yourself and your identity. Illustration: Lisa Hornung/TechRepublic It’s human nature; most of us love to talk about ourselves or at least share details about our past and preferences. And social media loves that, too, since it gets people engaged and participating.  There’s just one problem, however: you might inadvertently or even deliberately…

The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: Android, APT, Confluence, Cloud, MSHTML, Phishing, and Vulnerabilities. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity. Figure 1 – IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed. Current Anomali ThreatStream…