FluBot Malware Gang Arrested in Barcelona
Catalan police arrested four suspects last week on suspicion of managing FluBot, an Android malware strain that infected at least
New Side-Channel Attack Targets the CPU Ring Bus for the First Time
In a paper published today, a team of academics from the University of Illinois at Urbana-Champaign have published details about
Ransomware Gang Threatens To Launch DDoS Attacks, Call Reporters and Business Partners
The operators of the REvil (aka Sodinokibi) ransomware said they plan to expand their arsenal of extortion tactics against victims
NSA and CISA promote PDNS concept
The US National Security Agency and the Cybersecurity and Infrastructure Security Agency have published this week a joint advisory urging companies to adopt DNS-based security solutions as part of a concept the agencies are calling Protective DNS (PDNS).
US Charges Infosec Veteran John McAfee over Cryptocurrency Pump-and-Dump Scheme
The US Department of Justice has indicted today John McAfee, the founder of cybersecurity firm McAfee, on fraud and money laundering charges stemming from schemes that netted the infosec veteran more than $13 million.
White House Cybersecurity Adviser Wants a ‘Cleanliness Rating’ for Software Security
Policymakers are considering a number of changes to the nation’s cybersecurity posture as a result of the SolarWinds supply chain attack discovered late last year, including data breach notification laws and greater oversight of the nation’s critical infrastructure. In one of her first public appearances since joining the Biden White House, Deputy National Security Adviser Anne Neuberger floated another idea from an unlikely place: New York City dining establishments…
What It’s Like To Run a Tech Giant’s Security Team Without Ever Setting Foot in the Office
Mark Adams was appointed Adobe’s chief security officer about four months ago after serving in the same role for four years at Blizzard Entertainment. Thanks to the COVID-19 pandemic, his onboarding process has been untraditional, to say the least. For one, he hasn’t had a chance yet to visit the company’s physical offices. Instead, his calendar has looked like an ultramarathon of video conferences—days with a dozen back-to-back meetings during the first month to get to know his team and understand the company’s priorities…
Massive FluBot Botnet Infects 60,000 Android Smartphones
In the span of just two months, a new Android malware strain named FluBot has infected more than 60,000 devices, with 97% of the victims located in Spain. First spotted at the start of the year by security firm ThreatFabric (under the name of Cabassous), FluBot’s inner workings were described in a report published today by Swiss security firm PRODAFT…
Microsoft and Fireeye Detail New Malware Used by SolarWinds Hackers
Cybersecurity firms Microsoft and FireEye have published separate reports today detailing new malware strains they have linked to the threat actor that compromised software firm SolarWinds and its customers in a supply chain attack in 2020. Three new malware strains have been discovered in total, per the Microsoft report. The FireEye report details only one malware family…
Maza Cybercrime Forum Hacked, User Data Dumped Online
A hacker has breached Maza Faka, one of the oldest underground cybercrime forums active today, shut down its Tor-based website, and leaked the details of around 3,000 users in a PDF file posted on the forum’s front page. The security breach, which took place yesterday, on March 3, 2021, resulted in the leak of sensitive details about the forum’s registered users….