May 2022 – Page 10 – PossibleThreat Articles

Cardiologist moonlighted as successful ransomware developer

May 19, 2022 0 Comments aesculapius, billy the puppet, breon peace, hakbit, jigsaw, jigsaw ransomware, moises luis zagala gonzales, muddywater, nebuchadnezzar, nosophoros, Ransomware, thanos, thanos ransomware, zagala

Credit to Author: Jovi Umawing| Date: Thu, 19 May 2022 13:07:27 +0000

Moises Luis Zagala, cardiologist by day, ransomware developer by night, has been charged by the US government for computer crimes.

The post Cardiologist moonlighted as successful ransomware developer appeared first on Malwarebytes Labs.

Security Sophos

New Sophos Central data center is now live in Brazil

May 19, 2022 0 Comments products & services, Sophos Central

Credit to Author: Doug Aamoth| Date: Thu, 19 May 2022 12:30:24 +0000

We’re delighted to announce that our newest Sophos Central data center has gone live in Brazil. Sophos Central is the cloud-based management platform that supports our portfolio of advanced, next-gen security products. The Brazil data center joins our longtime data centers in the U.S., Germany, and Ireland, as well as the new data centers we […]

MalwareBytes Security

VMWare vulnerabilities are actively being exploited, CISA warns

May 19, 2022 0 Comments cisa, cve-2022-22954, cve-2022-22960, cve-2022-22972, cve-202222973, ed 22-03, Exploits and vulnerabilities, identity manager, vmware, vrealize, workspace one access

Credit to Author: Pieter Arntz| Date: Thu, 19 May 2022 12:42:13 +0000

CISA has issued severe warnings about disclosed vulnerabilities in VMWare products that are actively being exploited, probably by APT threat actors.

The post VMWare vulnerabilities are actively being exploited, CISA warns appeared first on Malwarebytes Labs.

Security TrendMicro

Bruised but Not Broken: The Resurgence of the Emotet Botnet Malware

May 19, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : research, trend micro research : spam

Credit to Author: Adolph Christian Silverio| Date: Thu, 19 May 2022 00:00:00 +0000

During the first quarter of 2022, we discovered a significant number of infections using multiple new Emotet variants that employed both old and new techniques to trick their intended victims into accessing malicious links and enabling macro content.

MalwareBytes Security

10 ways attackers gain access to networks

May 19, 2022 0 Comments Business, cisa, compromise, Hacking, malware, phishing, Vulnerabilities

Credit to Author: Christopher Boyd| Date: Thu, 19 May 2022 11:58:06 +0000

A joint multi-national cybersecurity advisory has revealed the top ten attack vectors most exploited by cybercriminals in order to gain access to organisation networks.

The post 10 ways attackers gain access to networks appeared first on Malwarebytes Labs.

Security TrendMicro

Detect Azure AD Hybrid Cloud Vulnerabilities

May 19, 2022 0 Comments trend micro devops : article, trend micro devops : azure, trend micro devops : best practices, trend micro devops : cloud native, trend micro devops : how to, trend micro devops : workload security

Credit to Author: Jiri Sykora| Date: Thu, 19 May 2022 00:00:00 +0000

AADInternals is a PowerShell module widely used by administrators for administering Azure Active Directory (AD) and Microsoft 365 – learn how to protect against their common vulnerabilities.

Independent Krebs Security

Senators Urge FTC to Probe ID.me Over Selfie Data

May 18, 2022 0 Comments A Little Sunshine, biometrics, blake hall, cyberscoop, facial recognition, Federal Trade Commission, ftc chair lina khan, id.me, internal revenue service, sen. alex padilla, sen. cory booker, sen. edward markey, sen. ron wyden, The Coming Storm, tonya riley

Credit to Author: BrianKrebs| Date: Wed, 18 May 2022 16:55:40 +0000

Some of more tech-savvy Democrats in the U.S. Senate are asking the Federal Trade Commission (FTC) to investigate identity-proofing company ID.me for “deceptive statements” the company and its founder allegedly made over how they handle facial recognition data collected on behalf of the Internal Revenue Service, which until recently required anyone seeking a new IRS account online to provide a live video selfie to ID.me.

Microsoft Security

So you want to be a CISO: What you should know about data protection

May 18, 2022 0 Comments Compliance, cybersecurity, Data governance

Credit to Author: Christine Barrett| Date: Wed, 18 May 2022 16:00:00 +0000

Learn how insider threats, data siloes, and shifting responsibilities are all affecting data management—and how security professionals can diminish risks to the organization.

The post So you want to be a CISO: What you should know about data protection appeared first on Microsoft Security Blog.

Security Wired

This Hacktivist Site Lets You Prank-Call Russian Officials

May 18, 2022 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Andy Greenberg| Date: Wed, 18 May 2022 10:56:57 +0000

To protest the war in Ukraine, WasteRussianTime.today auto-dials Russian government officials, connects them to each other, and lets you listen in to their confusion.

Security Wired

Your iPhone Is Vulnerable to a Malware Attack Even When It’s Off

May 18, 2022 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Dan Goodin, Ars Technica| Date: Tue, 17 May 2022 19:20:00 +0000

Researchers found a way to exploit the tech that enables Apple’s Find My feature, which could allow attackers to track location when a device is powered down.