Cyber Defense Advisors

News

Friday Squid Blogging: Studying the Colossal Squid

A survey of giant squid science. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here.

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

What CISOs Can Do About Brand Impersonation Scam Sites

Apply these nine tips to proactively fight fraudulent websites that use your brand to rip people off.

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

AWS EC2 Ubuntu Disconnects and Tries to Get Password

I wrote about how I configured an AWS EC2 instance in these two posts so I can log into it with RDP in these posts: Continue reading on Bugs That Bite »

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

Warning: Hackers Actively Exploiting Zero-Day in Fortra’s GoAnywhere MFT

A zero-day vulnerability affecting Fortra’s GoAnywhere MFT managed file transfer application is being actively exploited in the wild. Details of the flaw were first publicly shared by security reporter Brian Krebs on Mastodon. No public advisory has been published by Fortra. The vulnerability is a case of remote code injection that requires access to the administrative console […]

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

New Wave of Ransomware Attacks Exploiting VMware Bug to Target ESXi Servers

VMware ESXi hypervisors are the target of a new wave of attacks designed to deploy ransomware on compromised systems. “These attack campaigns appear to exploit CVE-2021-21974, for which a patch has been available since February 23, 2021,” the Computer Emergency Response Team (CERT) of France said in an advisory on Friday. VMware, in its own alert released […]

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

PixPirate: New Android Banking Trojan Targeting Brazilian Financial Institutions

A new Android banking trojan has set its eyes on Brazilian financial institutions to commit fraud by leveraging the PIX payments platform. Italian cybersecurity company Cleafy, which discovered the malware between the end of 2022 and the beginning of 2023, is tracking it under the name PixPirate. “PixPirate belongs to the newest generation of Android […]

Cyber News, Cyber Threat Trends
  • by
  • February 5, 2023

Finland’s Most-Wanted Hacker Nabbed in France

Julius “Zeekill” Kivimäki, a 25-year-old Finnish man charged with extorting a local online psychotherapy practice and leaking therapy notes for more than 22,000 patients online, was arrested this week in France. A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show […]

Cyber News, Cyber Threat Trends

Friday Squid Blogging: Studying the Colossal Squid

A survey of giant squid science. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here.

Cyber News, Cyber Threat Trends

MalVirt Loaders Exploit .NET Virtualization to Deliver Malvertising Attacks

The new loaders also leverage obfuscated virtualization techniques to avoid detection

Cyber News, Cyber Threat Trends