Skip to content
Home » Archives for December 2021

December 2021

RedLine making a b-line to your stored passwords

The RedLine information-stealing malware targets popular web browsers such as Chrome, Edge, and Opera. We tell clients to stop storing their passwords in browsers and to use a Locker. AhnLab ASEC warns that using the auto-login to get on to your sites is becoming a very large security problem affecting both organizations and individuals. AhnLab ASEC… Read More »RedLine making a b-line to your stored passwords

T-Mobile? Again, really?

In what has been a bad 4 years of security issues for T-Mobile. The company reported another data breach around December 2021. It is not yet known how many people were affected by this latest T-Mobile Hack or how hackers managed to breach T-Mobile’s defenses again. The T-MO reported a number of leaked internal documents show… Read More »T-Mobile? Again, really?

Original Fix for Log4j Flaw Fails to Fully Protect Against DoS Attacks, Data Theft

Writen by: Jai Vijayan Security experts are now urging organizations to quickly update to a new version of the Log4j logging framework that the Apache Foundation released Tuesday because its original fix for a critical remote-code execution flaw in the logging tool does not adequately protect against attacks in some situations. According to the Apache Foundation,… Read More »Original Fix for Log4j Flaw Fails to Fully Protect Against DoS Attacks, Data Theft

Revived Cerber Targets Confluence and GitLab Servers

Story reported by Cyware. Cerber ransomware is active again with new attack tactics. This time it has been observed targeting remote code execution vulnerabilities in Atlassian Confluence and GitLab servers. Cerber name resurfaces Since last month, the Cerber ransomware group has started targeting victims around the world. The ransomware operators were found using both Windows and Linux encryptors. The… Read More »Revived Cerber Targets Confluence and GitLab Servers

SideCopy APT Targets Indian and Afghan Governments

Reported by Cyware. SideCopy, a Pakistani threat actor, has been targeting the Indian and Afghan governments with espionage attacks. The group has stolen sensitive Google, Twitter, and Facebook credentials and access to government portals. SideCopy is suspected to be a subgroup of APT36. What has happened? According to Malwarebytes, the group tried to mimic the infection chains of… Read More »SideCopy APT Targets Indian and Afghan Governments