Welcome to another Afternoon Dessert breakout:
Ducktail Malware Operation Evolves with New Malicious Capabilities
The operators of the Ducktail information stealer have demonstrated a "relentless willingness to persist" and continued to update their malware as part of an ongoing financially driven campaign. "The malware is designed to steal browser cookies and take advantage of authenticated Facebook sessions to steal information from the victim's Facebook account," WithSecure researcher Mohammad Kazem
Read more....
Top Cyber Threats Facing E-Commerce Sites This Holiday Season
Delivering a superior customer experience is essential for any e-commerce business. For those companies, there's a lot at stake this holiday season. According to Digital Commerce 360, nearly $1.00 of every $4.00 spent on retail purchases during the 2022 holiday season will be spent online, resulting in $224 billion in e-commerce sales. To ensure your e-commerce site is ready for the holiday rush
Read more....
34 Russian Hacker Groups Stole Over 50 Million Passwords with Stealer Malware
As many as 34 Russian-speaking gangs distributing information-stealing malware under the stealer-as-a-service model stole no fewer than 50 million passwords in the first seven months of 2022. "The underground market value of stolen logs and compromised card details is estimated around $5.8 million," Singapore-headquartered Group-IB said in a report shared with The Hacker News. Aside from looting
Read more....
NordVPN Black Friday deal: Up to 63% off a 27-month VPN subscription
NordVPN's Black Friday deal is live with up to 63% off and 3 extra months for free on 1-year or 2-year subscriptions to the NordVPN VPN service. [...]
Read more....
Mali GPU ‘patch gap’ leaves Android users vulnerable to attacks
A set of five exploitable vulnerabilities in Arm's Mali GPU driver remain unfixed months after the chip maker patched them, leaving potentially millions of Android devices exposed to attacks. [...]
Read more....
The Black Friday 2022 Security, IT, VPN, & Antivirus Deals
Black Friday is almost here, and great deals are already live today for computer security, software, online courses, system admin services, antivirus, and VPN software. [...]
Read more....
How to hack an unpatched Exchange server with rogue PowerShell code
Review your servers, your patches and your authentication policies - there's a proof-of-concept out
Read more....
Pro-Russian hacktivists take down EU Parliament site in DDoS attack
The website of the European Parliament has been taken down following a DDoS (Distributed Denial of Service) attack claimed by a pro-Russia group of hacktivists calling themselves Anonymous Russia. [...]
Read more....
CryptoRom “pig butchering” scam sites seized, suspects arrested in US
Five tips to keep yourself, and your friends and family, out of the clutches of "chopping block" scammers...
Read more....
Fake MSI Afterburner targets Windows gamers with miners, info-stealers
Windows gamers and power users are being targeted by fake MSI Afterburner download portals to infect users with cryptocurrency miners and the RedLine information-stealing malware. [...]
Read more....
Ducktail Malware Operation Evolves with New Malicious Capabilities
The operators of the Ducktail information stealer have demonstrated a "relentless willingness to persist" and continued to update their malware as part of an ongoing financially driven campaign. "The malware is designed to steal browser cookies and take advantage of authenticated Facebook sessions to steal information from the victim's Facebook account," WithSecure researcher Mohammad Kazem
Read more....
Top Cyber Threats Facing E-Commerce Sites This Holiday Season
Delivering a superior customer experience is essential for any e-commerce business. For those companies, there's a lot at stake this holiday season. According to Digital Commerce 360, nearly $1.00 of every $4.00 spent on retail purchases during the 2022 holiday season will be spent online, resulting in $224 billion in e-commerce sales. To ensure your e-commerce site is ready for the holiday rush
Read more....
34 Russian Hacker Groups Stole Over 50 Million Passwords with Stealer Malware
As many as 34 Russian-speaking gangs distributing information-stealing malware under the stealer-as-a-service model stole no fewer than 50 million passwords in the first seven months of 2022. "The underground market value of stolen logs and compromised card details is estimated around $5.8 million," Singapore-headquartered Group-IB said in a report shared with The Hacker News. Aside from looting
Read more....
NordVPN Black Friday deal: Up to 63% off a 27-month VPN subscription
NordVPN's Black Friday deal is live with up to 63% off and 3 extra months for free on 1-year or 2-year subscriptions to the NordVPN VPN service. [...]
Read more....
Mali GPU ‘patch gap’ leaves Android users vulnerable to attacks
A set of five exploitable vulnerabilities in Arm's Mali GPU driver remain unfixed months after the chip maker patched them, leaving potentially millions of Android devices exposed to attacks. [...]
Read more....
The Black Friday 2022 Security, IT, VPN, & Antivirus Deals
Black Friday is almost here, and great deals are already live today for computer security, software, online courses, system admin services, antivirus, and VPN software. [...]
Read more....
How to hack an unpatched Exchange server with rogue PowerShell code
Review your servers, your patches and your authentication policies - there's a proof-of-concept out
Read more....
Pro-Russian hacktivists take down EU Parliament site in DDoS attack
The website of the European Parliament has been taken down following a DDoS (Distributed Denial of Service) attack claimed by a pro-Russia group of hacktivists calling themselves Anonymous Russia. [...]
Read more....
CryptoRom “pig butchering” scam sites seized, suspects arrested in US
Five tips to keep yourself, and your friends and family, out of the clutches of "chopping block" scammers...
Read more....
Fake MSI Afterburner targets Windows gamers with miners, info-stealers
Windows gamers and power users are being targeted by fake MSI Afterburner download portals to infect users with cryptocurrency miners and the RedLine information-stealing malware. [...]
Read more....