Afternoon Dessert - 2022-09-19

Welcome to another Afternoon Dessert breakout:

Emotet Botnet Started Distributing Quantum and BlackCat Ransomware
The Emotet malware is now being leveraged by ransomware-as-a-service (RaaS) groups, including Quantum and BlackCat, after Conti's official retirement from the threat landscape this year. Emotet started off as a banking trojan in 2014, but updates added to it over time have transformed the malware into a highly potent threat that's capable of downloading other payloads onto the victim's machine,
Read more....

Microsoft Teams' GIFShell Attack: What Is It and How You Can Protect Yourself from It
Organizations and security teams work to protect themselves from any vulnerability, and often don't realize that risk is also brought on by configurations in their SaaS apps that have not been hardened. The newly published GIFShell attack method, which occurs through Microsoft Teams, is a perfect example of how threat actors can exploit legitimate features and configurations that haven't been
Read more....

How botnet attacks work and how to defend against them
Experts believe that the development of serverless technologies will further simplify the creation of botnets for DDoS attacks. Here's how Gcore can counter these threats. [...]
Read more....

Revolut hack exposes data of 50,000 users, fuels new phishing wave
Revolut is sending out notices of a data breach to a small percentage of impacted users, informing them of a security incident where an unauthorized third party accessed internal data. [...]
Read more....

VMware, Microsoft warn of widespread Chromeloader malware attacks
The operators of the Chromeloader adware are evolving their attack methods and gradually transforming the low-risk tool into a dangerous malware loader, seen dropping ransomware in some cases. [...]
Read more....

Microsoft Outlook is disabling Teams Meeting add-in, how to fix
Microsoft is investigating a known issue affecting Outlook for Microsoft 365 users and preventing them from creating Teams meetings using the app's ribbon menu. [...]
Read more....

LastPass source code breach – incident response report released
Wondering how you'd handle a data breach report if the worst happened to you? Here's a useful example.
Read more....

Rockstar Games Confirms Hacker Stole Early Grand Theft Auto VI Footage
American video game publisher Rockstar Games on Monday revealed it was a victim of a "network intrusion" that allowed an unauthorized party to illegally download early footage for the Grand Theft Auto VI. "At this time, we do not anticipate any disruption to our live game services nor any long-term effect on the development of our ongoing projects," the company said in a notice shared on its
Read more....

Uber links breach to Lapsus$ group, blames contractor for hack
Uber believes the hacker behind last week's breach is affiliated with the Lapsus$ extortion group, known for breaching other high-profile tech companies such as Microsoft, Cisco, Nvidia, Samsung, and Okta. [...]
Read more....