The Week in Ransomware – October 11th 2019 – Decryptors Released!
We had some interesting news this week, such as the HildaCrypt ransomware releasing their keys, RobbinHood Ransomware bragging about their past exploits, a Muhstik Ransomware victim hacking back and stealing the decryption keys, and a Nemty decryptor being released. […]
FIN7 Hackers Load New RAT Malware Into ATM Maker’s Software
The FIN7 hacking group has added new tools to its malicious toolkit, a malware loader that will deliver payloads straight into memory and a module that hooks into the legitimate remote administration software of ATM maker NCR Corporation. […]
Windows 10 Update Assistant Vulnerability Needs Manual Fix, Here’s How
Microsoft has released a new version of the Windows 10 Update Assistant in order to fix a local privilege escalation vulnerability. While there is no imminent threat, the only way to fix this vulnerability is to uninstall the program or download the latest version. […]
Microsoft Improves Azure Active Directory Security with New Roles
Microsoft announced that 16 new Azure Active Directory (Azure AD) lower-privileged roles are available today in preview to help admins improve security by decreasing the number of Global administrators, and to enhance Azure and Microsoft 365 granular delegation capabilities. […]
Apple Software Update Zero-Day Used by BitPaymer Ransomware
Several companies from the automotive industry were targeted by BitPaymer ransomware operators during August, in attacks that used an Apple zero-day vulnerability impacting the Apple Software Update service bundled with iTunes and iCloud for Windows. […]
HP Touchpoint Analytics LPE Vulnerability Affects Most HP PCs
HP patched a vulnerability discovered in the HP Touchpoint Analytics software installed by default on most of its Windows laptops and desktops, a flaw allowing attackers to escalate privileges and execute arbitrary code using SYSTEM privileges. […]