The Week in Ransomware – January 1st 2021 – New Year Edition
www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-1st-2021-new-year-edition/ This holiday edition cover the latest ransomware news from the past two weeks, including known ransomware attacks and law enforcement takedowns. Over the past two weeks, we have seen ransomware attacks on scent and flavor designed Symrise, FreePBX developer Sangoma, trucking giant Air Forward, and home appliance maker Whirlpool,
Extracting Security Products from SUNBURST DNS Beacons
www.netresec.com/?page=Blog&month=2020-12&post=Extracting-Security-Products-from-SUNBURST-DNS-Beacons The latest version of our SunburstDomainDecoder (v1.7) can be used to reveal which endpoint protection applications that are installed on trojanized SolarWinds Orion deployments. The security application info is extracted from DNS queries for “avsvmcloud.com” subdomains, which is used by SUNBURST as a beacon and C2 channel.
Koronavilkku-sovellus yhteentoimivaksi muiden EU/Eta-maiden sovellusten kanssa
stm.fi/-/koronavilkku-sovellus-yhteentoimivaksi-muiden-eu-eta-maiden-sovellusten-kanssa Koronavilkku-sovelluksesta tulee yhteentoimiva muissa EU/Eta-maissa tai Sveitsissä kehitettyjen sovellusten kanssa. Päivitys tulee loppiaisen jälkeen. Lisäksi:
Revenge RAT targeting users in South America
www.uptycs.com/blog/revenge-rat-targeting-users-in-south-america The Uptycs threat research team recently came across multiple document samples that download Revenge RAT. The campaign currently seems to be active in Brazil.
Pirate Site Search Traffic Tanked Following Google Updates
torrentfreak.com/pirate-site-search-traffic-tanked-following-google-updates-210101/ Pirate sites lost quite a bit of traffic in 2020. A detailed analysis of the yearly trend shows that visitors from search engines dropped by roughly a third. Interestingly, it appears that Google’s algorithm updates did most of the damage.