February 2022 – Page 10 – PossibleThreat Articles

Journalist won’t be indicted for hacking for viewing a state website’s HTML

February 16, 2022 0 Comments cole county prosecutor, department of elementary and secondary education, dese, gov. mike parson, Hacking, jean manake, josh renaud, locke thompson, missouri press association, post-dispatch, st. louis post-dispatch

Credit to Author: Malwarebytes Labs| Date: Wed, 16 Feb 2022 11:46:11 +0000

A journalist incorrectly branded as a “hacker” by the governor of Missouri won’t be prosecuted.

Categories: Hacking

Tags: Cole County Prosecutor Department of Elementary and Secondary Education DESE Gov. Mike Parson Jean Manake Josh Renaud Locke Thompson Missouri Press Association Post-Dispatch St. Louis Post-Dispatch

Fortinet Security

Guard Your Drive from DriveGuard: Moses Staff Campaigns Against Israeli Organizations Span Several Months

February 16, 2022 0 Comments

FortiGuard Labs identified a new campaign operated by threat actor Moses Staff. Read our blog to learn the TTPs used and about a new backdoor used to download files, execute payloads, and exfiltrate data from target networks.

Security Sophos

Google announces zero-day in Chrome browser – update now!

February 15, 2022 0 Comments chrome, chromium, cve-2022-0609, Google, Google Chrome, Microsoft Edge, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Tue, 15 Feb 2022 16:17:45 +0000

Zero-day buses: none for a while, then three at once. Here’s Google joining Apple and Adobe in “zero-day week”

Security Sophos

Vulnerable Exchange server hit by Squirrelwaffle and financial fraud

February 15, 2022 0 Comments email security, exchange vulnerability, featured, fraud, malspam, proxylogon, proxyshell, security operations, squirrelwaffle

Credit to Author: Tilly Travers| Date: Tue, 15 Feb 2022 13:00:59 +0000

While Squirrelwaffle leveraged Exchange to spread malspam through hijacked email threads, one thread was spirited away by attackers to trick the target into a money transfer

Security Sophos

Rapid Response: The Squirrelwaffle Incident Guide

February 15, 2022 0 Comments featured, malware, mtr, proxylogon, proxyshell, rapid response, security operations, sophos xdr, squirrelwaffle

Credit to Author: Tilly Travers| Date: Tue, 15 Feb 2022 13:00:10 +0000

Squirrelwaffle is a malicious dropper or loader used to deliver other malware onto target systems. This guide shows Security Operations Centers (SOCs) and Incident Response Teams how to detect and respond to the presence of Squirrelwaffle on the network

MalwareBytes Security

Update now! Chrome patches actively exploited zero-day vulnerability

February 15, 2022 0 Comments animation, chrome, cve-2022-0609, Exploits and vulnerabilities, uaf

Credit to Author: Pieter Arntz| Date: Tue, 15 Feb 2022 13:50:16 +0000

Google has patched 11 bugs in Chrome, one of which was being actively exploited.

Categories: Exploits and vulnerabilities

Tags: Animation chrome cve-2022-0609 UAF

Security Wired

Twitter Has Started Blocking Porn in Germany

February 15, 2022 0 Comments Security, Security / Privacy

Credit to Author: Matt Burgess| Date: Tue, 15 Feb 2022 12:00:00 +0000

Dozens of accounts have been vanished as Twitter bows to pressure to make it harder for children to find adult content online.

Security TrendMicro

SMS PVA Services’ Use of Infected Android Phones Reveals Flaws in SMS Verification

February 15, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : mobile, trend micro research : research

Credit to Author: Zhengyu Dong| Date: Tue, 15 Feb 2022 00:00:00 +0000

Certain SMS PVA services allow their customers to create disposable user profiles or register multiple accounts on many popular online platforms. These services can be abused by criminals to conduct fraud or other malicious activities.

Security Sophos

Adobe fixes zero-day exploit in e-commerce code: update now!

February 14, 2022 0 Comments Adobe, cve-2022-24086, Exploit, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Mon, 14 Feb 2022 22:38:58 +0000

There’s a remote code execution hole in Adobe e-commerce products – and cybercrooks are already exploiting it.

Fortinet Security

NFT Lure Used to Distribute BitRAT

February 14, 2022 0 Comments

FortiGuard Labs researchers discovered an Excel file that uses NFT related information as a lure to download and install BitRAT malware. Read our blog to learn how the attack works.