Daily Cyber Brief
A Dutch man was arrested in connection to Tornado Cash, CISA warns of a resurgence of Zeppelin ransomware, and SOVA malware adds a feature to encrypt Android devices...
Cybersecurity
Dutch financial prosecutors say they detained a man suspected of involvement in "concealing criminal financial flows and facilitating money laundering" through the virtual currency mixer Tornado Cash. The 29-year-old man was arrested Aug. 10 in Amsterdam, the financial…
Following an alleged theft that stole $32 million from BlueBenx, a Brazilian crypto lending site, all of its 22,000 members were reportedly barred from withdrawing their funds (or 160 million Brazilian real), as reported by Cointelegraph. While no information about the hack…
Researchers have discovered at least 9,000 exposed VNC (virtual network computing) endpoints that can be accessed and used without authentication, allowing threat actors easy access to internal networks. VNC (virtual network computing) is a platform-independent…
Telecommunications giant AT&T denied any connection to a database of stolen information that included the Social Security numbers of 23 million Americans. First reported by Brian Krebs, Milwaukee cybersecurity company Hold Security said it found a 3.6 GB file on a dark…
The CISA has seen a resurgence of the malware targeting a range of verticals and critical infrastructure organizations by exploiting RDP, firewall vulnerabilities. Zeppelin ransomware is back and employing new compromise and encryption tactics in its recent campaigns…
A pair of reports from cybersecurity firms SEKOIA and Trend Micro sheds light on a new campaign undertaken by a Chinese threat actor named Lucky Mouse that involves leveraging a trojanized version of a cross-platform messaging app to backdoor systems. Infection chains…
The SOVA Android banking trojan continues to evolve with new features, code improvements, and the addition of a new ransomware feature that encrypts files on mobile devices. With the latest release, the SOVA malware now targets over 200 banking, cryptocurrency exchange…
A security feature bypass vulnerability has been uncovered in three signed third-party Unified Extensible Firmware Interface (UEFI) boot loaders that allow bypass of the UEFI Secure Boot feature. "These vulnerabilities can be exploited by mounting the EFI System Partition and…
The Cybersecurity and Infrastructure Security Agency added two vulnerabilities found in products from digital collaboration platform Zimbra after a cybersecurity company reported mass exploitation of the bugs throughout July and in early August. On Wednesday, Zimbra…
Security flaws have been identified in Xiaomi Redmi Note 9T and Redmi Note 11 models, which could be exploited to disable the mobile payment mechanism and even forge transactions via a rogue Android app installed on the devices. Check Point said it found the…