You might be interested in …

[TheRecord] Surveillance software firm FinFisher declares insolvency

Munich-based spyware company FinFisher declared insolvency last month, Bloomberg reported Monday, amid an ongoing investigation into its business dealings.  The controversial firm was accused of selling surveillance spyware to repressive regimes to target dissidents, activists, and journalists. “FinSpy,” the company’s most profitable spyware, has been monitored by the German government and human rights organizations for […]

Read More

[SANS ISC] Microsoft November 2021 Patch Tuesday, (Tue, Nov 9th)

All posts, Sans-ISC

This month we got patches for 55 vulnerabilities. Of these, 6 are critical, 4 were previously disclosed and 2 are being exploited according to Microsoft. One of the exploited vulnerabilities is a remote code execution affecting Microsoft Exchange Server (CVE-2021-42321). According to the advisory, the vulnerability occurs due to improper validation of cmdlet arguments and, […]

Read More

Daily NCSC-FI news followup 2021-06-17

Black Kingdom ransomware Black Kingdom ransomware appeared on the scene back in 2019, but we observed some activity again in 2021. The ransomware was used by an unknown adversary for exploiting a Microsoft Exchange vulnerability (CVE-2021-27065). The complexity and sophistication of the Black Kingdom family cannot bear a comparison with other Ransomware-as-a-Service (RaaS) or […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.