CISA gives federal agencies 5 days to find hacked Exchange servers
www.bleepingcomputer.com/news/security/cisa-gives-federal-agencies-5-days-to-find-hacked-exchange-servers/ See also: cyber.dhs.gov/ed/21-02/
North Korean hackers target security researchers again
www.bleepingcomputer.com/news/security/google-north-korean-hackers-target-security-researchers-again/ Google’s Threat Analysis Group (TAG) says that North Korean government-sponsored hackers are once again targeting security researchers using fake Twitter and LinkedIn social media accounts.
Risk Management, C-Suite Shifts & Next-Gen Text Scams: Your March 2021 Security Intelligence Roundup
securityintelligence.com/articles/march-2021-security-intelligence-roundup/
Iranian credential thieves targeting medical researchers
www.scmagazine.com/home/security-news/iranian-credential-thieves-targeting-medical-researchers/
Android sends 20x more data to Google than iOS sends to Apple, study says
He believed Apple’s App Store was safe. Then a fake app stole his life savings in bitcoin.
www.washingtonpost.com/technology/2021/03/30/trezor-scam-bitcoin-1-million/
Back in a Bit: Attacker Use of the Windows Background Intelligent Transfer Service
www.fireeye.com/blog/threat-research/2021/03/attacker-use-of-windows-background-intelligent-transfer-service.html Applications interact with the Background Intelligent Transfer Service by creating jobs with one or more files to download or upload. The BITS service runs in a service host process and can schedule transfers to occur at any time. As is the case with many technologies, BITS can be used both by legitimate applications and by attackers.
Fransom is an open-source tool that will emulate common ransomware functions for the purpose of testing endpoint detection and response tools
github.com/fraktalcyber/Fransom