Articles By This Author
Spanish police have seized servers and arrested the operators of an Android app designed to broadcast pirate video streams, but which also secretly sold users’ personal data and ensnared smartphones into proxy and DDoS botnets. Named Mobdro, the app was downloaded more than 100 million times, according to Spanish National Police.
A hacking group is piggybacking on the work of other threat actors and is hijacking web shells planted on unpatched Microsoft Exchange servers, including backdoors installed by Chinese cyberspies. The “hijacking activity” is related to the recently disclosed ProxyLogon vulnerabilities.
A threat actor is currently exploiting the ProxyLogon vulnerabilities to install ransomware on unpatched Microsoft Exchange email servers and encrypt their content, Microsoft confirmed today. Only six victims have been identified so far, according to Michael Gillespie, ID-Ransomware creator and an Emsisoft security researcher.
Netflix is currently testing a security feature that will block users who don’t live in the same home as the account owner from accessing a shared account, a spokesperson told The Record today. According to screenshots shared online today, some users who were sharing accounts with family but not living in the same home were prompted to register their own accounts.
The Molson Coors Beverage Company —the multinational conglomerate behind major beer and beverage brands like Coors, Miller, Molson, Bergenbier, and Redd’s— said today that production at some of its facilities has stopped following a cybersecurity incident. Sources who reached out to The Record earlier today said the company suffered a ransomware attack on Tuesday, following which affected IT systems were taken down.
At least six major Chinese universities with previous connections to government-backed hacking groups have been conducting research on the intersection of cybersecurity and machine learning. These universities have past connections to Chinese hacking groups, which have often recruited operators from the staff or student base, which the CSET team sees as an informal partnership.
A Vietnamese security researcher has published today the first functional public proof-of-concept exploit for a group of vulnerabilities in Microsoft Exchange servers known as ProxyLogon, and which have been under heavy exploitation for the past week.
A coalition of Google, the Linux Foundation, Purdue University, and Red Hat launched a new project this week aimed at helping companies secure their software. Named Sigstore, this new tool will provide the infrastructure for developers to cryptographically sign software releases, container images, or binaries and then save signing proof in public and auditable logs.
The Spanish government has fallen victim to a ransomware attack on Tuesday that impacted the IT systems of the Servicio Público de Empleo Estatal (SEPE), the agency that manages and pays out government unemployment benefits. The incident affected the agency’s backend systems and public website.