[SecurityWeek] Google Says Threat Actors Using New Code Signing Tricks to Evade Detection

Financially motivated threat actors have started using new code signing tricks to increase the chances of their software evading detection on Windows systems, Google’s Threat Analysis Group reported on Thursday.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[SANS ISC] ISC Stormcast For Monday, November 15th, 2021 https://isc.sans.edu/podcastdetail.html?id=7756, (Mon, Nov 15th)

All posts, Sans-ISC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Source: Read More (SANS Internet Storm Center, InfoCON: green)

Read More

[SecurityWeek] Get Ready for PYSA Ransomware Attacks Against Linux Systems

All posts, Security Week

Linux is increasingly targeted by ransomware. Researchers have now detected indications that the PYSA ransomware, often also known as Mespinoza, is also being readied for Linux targets. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[NCSC-FI News] OpenSSL patches crash-me bug triggered by rogue certs

A bug in OpenSSL certificate parsing leaves systems open to denial-of-service attacks from anyone wielding an explicit curve This parsing happens prior to verification of the certificate’s signature. Slip a bad certificate to any app or server using BN_mod_sqrt() to parse certs, and the software will get caught in the loop and stop working. Source: […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.