Facebook today admitted that it “unintentionally” used access to 1.5 millions users’ email accounts and collected email contacts without users’ knowledge and consent.
— Read on thehackernews.com/2019/04/facebook-email-database.html
Rise of new multi-functional rootkit-backdoor-infostealer-adware strain worries researchers.
— Read on www.zdnet.com/article/scranos-rootkit-expands-operations-from-china-to-the-rest-of-the-world/
An attempt to address the “double key press” issue on Apple’s butterfly keyboard – aahung/Unshaky
— Read on unshaky.nestederror.com/
Plugin vulnerabilities exploited in traffic monetization schemes – Malwarebytes Labs | Malwarebytes Labs
— Read on blog.malwarebytes.com/threat-analysis/2019/03/plugin-vulnerabilities-exploited-traffic-monetization-schemes/
Malware Installed in Asus Computers through Hacked Update Process – Schneier on Security
— Read on www.schneier.com/blog/archives/2019/03/malware_install.html
This is a guest post by independent security researcher James Quinn. This will be Part 1 of a series titled Reversing Gh0stRAT Variants. As 2018 drew to a close and 2019 took over, I began to see a different behavior from SMB malware authors. Instead of massive, multi-staged cryptocurrency miners, I began to see more small, covert RATs serving as partial stage1’s. Of these samples, there was one specific sample that stood out to me. A Gh0stRAT variant, this
— Read on www.alienvault.com/blogs/labs-research/the-odd-case-of-a-gh0strat-variant
Insikt Group analyzes network communications relating to a selection of RAT command-and-control servers to profile targeted victim organizations.
— Read on www.recordedfuture.com/rat-corporate-risk-assessment/
A roundup of security news from March 11–17 covering our most recent blogs and other news, including Lazarus Group, Emotet, PSD2, reputation management, Google’s Nest, and Firefox Send.
— Read on blog.malwarebytes.com/security-world/2019/03/a-week-in-security-march-11-17/
Judging Facebook’s Privacy Shift – Schneier on Security
— Read on www.schneier.com/blog/archives/2019/03/judging_faceboo.html
Critical Flaw in Swiss Internet Voting System – Schneier on Security
— Read on www.schneier.com/blog/archives/2019/03/critical_flaw_i.html