NSA warns organizations about the dangers of poorly implemented wildcard TLS cer...

Medtronic has recalled its remote controller used for insulin pumps after an ind...

Google released a security update addressing four newly disclosed vulnerabilitie...

ALPACA ATTACKS

NSA

TLS

NSA Releases Guidelines to Avoid The Dangers of Wildcard TLS Certificates and AL...

NSA warns organizations about the dangers of poorly implemented wildcard TLS certificates and a new web application exploitation technique, ALPACA......

11-Oct-2021

3 min read

RFID

Medtronic

RC

Medtronic Recalls their Medical Device After Learning about the Security Risks

Medtronic has recalled its remote controller used for insulin pumps after an individual researcher found severe vulnerabilities in it, asking the users to disable the device entirely and return it ......

11-Oct-2021

2 min read

Chrome

Google

Vulnerability

Google Chrome detected four new high severity vulnerabilities, recently patched

Google released a security update addressing four newly disclosed vulnerabilities targeting Google Chrome for Windows, Mac & Linux; CVE-2021-37977 tracked the highest severity score......

10-Oct-2021

2 min read

API Key

BrewDog

Data Leak

BrewDog irreversibly leaked personal data of 200,000 shareholders remained undet...

BrewDog exposed the Personally Identifiable Information (PII) of 200,000 shareholders for 18 months and reportedly failed to notify the customers about it too......

10-Oct-2021

3 min read

APT28

Gmail

APT28 targets 14,000 Gmail users in a Phishing Campaign linked to Russia, Google...

Google notified 14,000 Gmail users worldwide who might be at a high risk of compromise due to the Russian Government-backed threat group Fancy Bear aka APT28. It subsequently said it would also be delivering security keys to 10,000 users... ...

09-Oct-2021

3 min read

RYUK

FIN17

TRICKBOT

Undocumented Ransomware Group FIN12 aka UNC1878 targets Healthcare globally

Mandiant has revealed a ransomware gang FIN12 that focuses on healthcare sectors and specializes in the post-compromise deployment of RYUK ransomware to encrypt data......

09-Oct-2021

5 min read

Ransomware

WEIR GROUP

WEIR GROUP Suffers A Ransomware Attack Resulting In Revenue Deferrals

WEIR GROUP reportedly discloses an "attempted ransomware attack" led to "significant temporary disruption" in September, resulting in revenue deferrals of £50 million... ...

09-Oct-2021

2 min read

Vidar

Mastodon

Malware

Mastodon Exploited By Vidar Stealer To Receive C&C Configuration

Vidar Trojan, commonly used by cybercriminals to steal credentials, has now taken advantage of the social media platform Mastodon as a communication channel to receive C2 configurations... ...

08-Oct-2021

4 min read

China

BlackBerry

APT41

Blackberry links Chinese Threat Group(APT41) to Phishing Campaign Targeting Indi...

A report released by blackberry stated that three phishing lures targeting Indians that are disguised as Covid-19 statistics are connected to a Chinese cyberespionage group APT41... ...

06-Oct-2021

3 min read

RAT

Agent Tesla

Deobfuscation

Agent Tesla's C2 Servers Drained Following a 950GB Data Extracted by Researches

Agent Tesla, the powerful password-stealing tool, has now been drained, and researchers at Resecurity have extracted data worth 950GB containing passwords and sensitive information......

06-Oct-2021

2 min read