Cybersecurity News
TeamTNT’s New Tools Target Multiple OS

Microsoft: Attackers Exploiting Windows Zero-Day Flaw
Microsoft Corp. warned Tuesday that attackers are exploiting a previously unknown vulnerability in Windows 10 and many Windows Server versions to seize control over PCs when users open a malicious document or visit a booby-trapped website. There is currently no official patch for the flaw, but Microsoft has released recommendations for mitigating the threat.Pro-Chinese government propaganda campaign spurs on COVID-19 protests in the US
The campaign is far more extensive than previously thought.Microsoft, CISA Urge Mitigations for Zero-Day RCE Flaw in Windows

Operation Chimaera: TeamTNT hacking group strikes thousands of victims worldwide
The cybercriminals are now indiscriminate in the operating systems they attack.BladeHawk attackers spy on Kurds with fake Android apps
Facebook is being abused to spread surveillanceware focused on the Kurdish ethnic group.Ragnar Locker Gang Warns Victims Not to Call the FBI

Netgear Smart Switches Open to Complete Takeover

Back-to-Basics: Choose Trusted Partners
As small and medium businesses begin to re-open following the pandemic, it’s important to do so securely in order to protect customer’s payment card data. Too often, data breaches happen as a result of vulnerabilities that are entirely preventable. The PCI Security Standards Council (PCI SSC) has developed a set of payment protection resources for small businesses. In this 8-part back-to-basics series, we highlight payment security basics for protecting against payment data theft. Today’s blog focuses on choosing trusted partners.
Jenkins Hit as Atlassian Confluence Cyberattacks Widen

ProtonMail Forced to Log IP Address of French Activist

ProtonMail forced to log user’s IP address after an order from Swiss authorities
Following the incident the company has updated its website and privacy policy to clarify its legal obligations to its userbase
The post ProtonMail forced to log user’s IP address after an order from Swiss authorities appeared first on WeLiveSecurity
Authorities Arrest Another TrickBot Gang Member in South Korea

BladeHawk group: Android espionage against Kurdish ethnic group
ESET researchers have investigated a targeted mobile espionage campaign against the Kurdish ethnic group, and that has been active since at least March 2020.
The post BladeHawk group: Android espionage against Kurdish ethnic group appeared first on WeLiveSecurity
Holy Grail of Security: Answers to ‘Did XYZ Work?’ – Podcast

“FudCo” Spam Empire Tied to Pakistani Software Firm
In May 2015, KrebsOnSecurity briefly profiled "The Manipulaters," the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email. Six years later, a review of the social media postings from this group shows they are prospering, while rather poorly hiding their activities behind a software development firm in Lahore that has secretly enabled an entire generation of spammers and scammers.Human Fraud: Detecting Them Before They Detect You

IoT Attacks Skyrocket, Doubling in 6 Months
