[SecurityWeek] Cookie Theft Malware Used to Hijack YouTube Accounts

Google says it has disrupted phishing attacks in which threat actors were attempting to use cookie theft malware to hijack YouTube accounts and abuse them to promote cryptocurrency scams.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[SANS ISC] LotL Classifier tests for shells, exfil, and miners, (Tue, Dec 28th)

All posts, Sans-ISC

A supervised learning approach to Living off the Land attack classification from Adobe SI   Happy Holidays, readers! First, a relevant quote from a preeminent author in the realm of intelligence analysis, Richards J. Heuer, Jr.: “When inferring the causes of behavior, too much weight is accorded to personal qualities and dispositions of the actor […]

Read More

[SecurityWeek] Microsoft Spots Multiple Nation-State APTs Exploiting Log4j Flaw

All posts, Security Week

If defenders needed any more urgency to patch and mitigate the explosive Log4j zero-day, along comes word that APT actors linked to China, Iran, North Korea and Turkey have already pounced and are actively exploiting the CVSS 10.0 vulnerability. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[NCSC-FI News] Cyclops Blink Sets Sights on Asus Routers

Cyclops Blink, an advanced modular botnet that is reportedly linked to the Sandworm or Voodoo Bear advanced persistent threat (APT) group, has recently been used to target WatchGuard Firebox devices according to an analysis performed by the UK’s National Cyber Security Centre (NCSC) We acquired a variant of the Cyclops Blink malware family that targets […]

Read More