Welcome to another Afternoon Dessert breakout:
BlackByte ransomware uses new data theft tool for double-extortion
A BlackByte ransomware affiliate is using a new custom data stealing tool called 'ExByte' to steal data from compromised Windows devices quickly. [...]
Read more....
Clearview AI gets third €20 million fine for illegal data collection
France's data protection authority (CNIL) has fined Clearview AI with €20 million for illegal collection and processing of biometric data belonging to French citizens. [...]
Read more....
Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware
A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines. "The attacker intends to utilize a victim's resources as much as possible, not only to install RAR1Ransom for extortion, but also to spread GuardMiner to collect cryptocurrency," Fortinet FortiGuard Labs researcher Cara Lin said
Read more....
Microsoft testing a Windows ‘PC Manager’ system optimizer app
Microsoft is developing a Windows system optimization program called 'PC Manager' that combines existing Windows tools into one interface. [...]
Read more....
Hackers exploiting critical VMware flaw to deploy ransomware, miners
Security researchers observed malicious campaigns leveraging a critical vulnerability in VMware Workspace One Access to deliver various malware, including the RAR1Ransom tool that locks files in password-protected archives. [...]
Read more....
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
Crooks: Show us the money! Cops: How about you show us the decryption keys first?
Read more....
S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]
The coolest video game ever! And lots of solid cybersecurity advice - listen now!
Read more....
Wholesale giant METRO hit by IT outage after cyberattack
International wholesale giant METRO is experiencing an infrastructure outage and store payment issues following a recent cyberattack. [...]
Read more....
Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware
The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems. In an attack chain detected by Trustwave SpiderLabs researchers, an invoice-themed ZIP file lure was found to contain a nested self-extracting (SFX) archive, the first archive acting as a conduit to launch
Read more....
BlackByte ransomware uses new data theft tool for double-extortion
A BlackByte ransomware affiliate is using a new custom data stealing tool called 'ExByte' to steal data from compromised Windows devices quickly. [...]
Read more....
Clearview AI gets third €20 million fine for illegal data collection
France's data protection authority (CNIL) has fined Clearview AI with €20 million for illegal collection and processing of biometric data belonging to French citizens. [...]
Read more....
Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware
A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines. "The attacker intends to utilize a victim's resources as much as possible, not only to install RAR1Ransom for extortion, but also to spread GuardMiner to collect cryptocurrency," Fortinet FortiGuard Labs researcher Cara Lin said
Read more....
Microsoft testing a Windows ‘PC Manager’ system optimizer app
Microsoft is developing a Windows system optimization program called 'PC Manager' that combines existing Windows tools into one interface. [...]
Read more....
Hackers exploiting critical VMware flaw to deploy ransomware, miners
Security researchers observed malicious campaigns leveraging a critical vulnerability in VMware Workspace One Access to deliver various malware, including the RAR1Ransom tool that locks files in password-protected archives. [...]
Read more....
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
Crooks: Show us the money! Cops: How about you show us the decryption keys first?
Read more....
S3 Ep105: WONTFIX! The MS Office cryptofail that “isn’t a security flaw” [Audio + Text]
The coolest video game ever! And lots of solid cybersecurity advice - listen now!
Read more....
Wholesale giant METRO hit by IT outage after cyberattack
International wholesale giant METRO is experiencing an infrastructure outage and store payment issues following a recent cyberattack. [...]
Read more....
Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware
The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems. In an attack chain detected by Trustwave SpiderLabs researchers, an invoice-themed ZIP file lure was found to contain a nested self-extracting (SFX) archive, the first archive acting as a conduit to launch
Read more....