The watchdog alleges the app “helped stalkers steal private information.”
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[SANS ISC] Malicious PowerShell Using Client Certificate Authentication, (Mon, Oct 18th)
Attackers have many ways to protect their C2 servers from unwanted connections. They can check some specific headers, the user-agent, the IP address location (GeoIP), etc. I spotted an interesting PowerShell sample that implements a client certificate authentication mechanism to access its C2 server. It’s VT score is 9/56[1] (SHA256:6d3f45db0a991572a7ac8077e2fd8eec29aad99e7efa6cea5e54186ac1abc488). The certification is Base64 encoded and […]
[ThreatPost] It’s Time to Prepare for a Rise in Insider Threats
Anurag Kahol, CTO at Bitglass, discusses options for detecting malicious or dangerous activity from within an organization. Source: Read More (Threatpost)
Daily NCSC-FI news followup 2021-01-02
The Week in Ransomware – January 1st 2021 – New Year Edition www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-1st-2021-new-year-edition/ This holiday edition cover the latest ransomware news from the past two weeks, including known ransomware attacks and law enforcement takedowns. Over the past two weeks, we have seen ransomware attacks on scent and flavor designed Symrise, FreePBX developer Sangoma, trucking giant […]