[ad_1]
Welcome to our weekly roundup, the place we share what it’s essential to find out about cybersecurity information and occasions that occurred over the previous few days. This week, learn the important thing takeaways from Development Micro’s first half of 2021 Linux Risk report. Additionally, examine Google eradicating faux crypto-mining apps from the Play Retailer.
Learn on:
Linux Risk Report H1′ 2021: Key Safety Takeaways
As the recognition of Linux continues to extend, so does its assault floor. This brings to gentle a urgent query for organizations: who’s liable for the safety of all of the Linux situations working your cloud atmosphere? This weblog highlights key takeaways from Development Micro’s Linux Risk report.
Google Removes Faux Crypto-Mining Apps
Google has eliminated eight faux crypto-mining cellular apps from its Play Retailer, however researchers at safety agency Development Micro have flagged 120 different apps on customers’ telephones purporting to even be crypto-mining. Customers of the eight apps paid for crypto-mining companies that have been by no means delivered, the researchers say.
Earth Baku Returns: Uncovering the Upgraded Toolset Behind the APT Group’s New Cyberespionage Marketing campaign
Final yr, Development Micro studied new malware instruments that surfaced as a part of a cyberespionage marketing campaign, which Earth Baku — a infamous superior persistent risk (APT) group, higher generally known as APT41 — had carried out in opposition to organizations within the Indo-Pacific area. This report shares key findings with a view to encourage additional analysis into this energetic marketing campaign.
Ransomware on a Rampage; a New Wake-Up Name
Ransomware is on a rampage concentrating on business and organizations. It is usually and creating vital cybersecurity challenges. The present state of cyber-affairs is an particularly alarming one as a result of ransomware assaults are rising not solely in numbers, but additionally within the monetary and reputational prices to companies and organizations and now the U.S. authorities is specializing in ransomware as a legislation enforcement challenge.
TippingPoint Risk Safety System Licensed by NetSecOPEN
IT safety consumers face more and more tough choices at this time. With a safety market swollen with distributors and price an estimated $156 billion in 2020, how are you going to differentiate advertising and marketing spin from actuality and discover the precise merchandise for your small business? One reply is to check unbiased lab testing from respected vendor-neutral sources. That’s why Development Micro just lately submitted its TippingPoint Risk Safety System 5500TX to NetSecOPEN for evaluate.
OnePercent Ransomware Group Hits Firms through IceID Banking Trojan
The FBI is warning firms {that a} ransomware group calling itself OnePercent or 1Percent is leveraging the IceID Trojan and the Cobalt Strike backdoor to achieve a foothold inside networks. Like many different high-profile ransomware teams, OnePercent each encrypts and steals company information, threatening victims to launch or public sale the data if the ransom shouldn’t be paid.
New Marketing campaign Sees LokiBot Delivered Through A number of Strategies
Development Micro just lately detected an aggressive malware distribution marketing campaign delivering LokiBot through a number of strategies, together with the exploitation of older vulnerabilities. This weblog describes an instance of 1 the strategies used within the marketing campaign, in addition to a brief evaluation of the payload. Researchers discovered that one of many command-and-control (C&C) servers had enabled listing looking, permitting us to retrieve up to date samples.
Poly Community Recoups $610M Stolen from DeFi Platform
A risk actor known as “Mr. White Hat” has returned the $610 million stolen from the decentralized finance platform Poly Community. The breached firm did every little thing from threaten to sic legislation enforcement on the attacker on as much as its final supply: the place of chief safety officer in change for getting its a refund. Mr. White Hat, as Poly Community dubbed him, stated the plan was by no means to maintain the cash, simply to show there are safety weaknesses related to DeFi platforms.
What the Norton-Avast Merger Means for Cybersecurity
NortonLifeLock and Avast introduced an $8 billion deal which is able to see the 2 client cybersecurity distributors merge their respective companies. The 2 have highlighted the “compelling strategic and monetary rationale” behind the merger. This weblog discusses what the merger means for patrons and the cybersecurity business.
White Home Rolls Out Pipeline, Provide Chain Safety Initiatives as Firms Pledge Billions in Cyber Spending
The Biden administration introduced initiatives to bolster provide chain and pure fuel pipeline safety, following a White Home personal sector cybersecurity summit the place main firms pledged billions of {dollars} in cyber safety.
What do you suppose is probably the most stunning stat from the Linux Risk report? Share within the feedback beneath or observe me on Twitter to proceed the dialog: @JonLClay.
[ad_2]