Cyberior Infosec

App-Gallery - Malware Station !!!!!!!!!!!!!!

Over 9 Million Android Phones Running Malware Apps from Huawei's AppGallery More than 9 million Android phones are infected with malware distributed through Huawei's AppGallery Store.

SHROOTLESS !!!!!!!!!!

New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems Microsoft uncovered details of a new SIP bypass vulnerability affecting Apple’s macOS system that could let attackers install rootkit malware.

A new social engineering-based malvertising campaign targeting Japan has been found to deliver a malicious application that deploys a banking trojan on compromised Windows machines to steal credentials associated with cryptocurrency accounts.

Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan Cybercriminals target cryptocurrency exchange users with the Cinobi banking Trojan.

A threat actor presumed to be of Chinese origin has been linked to a series of 10 attacks targeting Mongolia, Russia, Belarus, Canada, and the U.S. from January to July 2021 that involve the deployment of a remote access trojan (RAT) on infected systems, according to new research.

New Chinese Spyware Being Used in Widespread Cyber Espionage Attacks Researchers Uncover New Chinese Spyware is Being Used in Wide-Scale Cyber Espionage Attacks

A newly uncovered security flaw in the Windows operating system can be exploited to coerce remote Windows servers, including Domain Controllers, to authenticate with a malicious destination, thereby allowing an adversary to stage an NTLM relay attack and completely take over a Windows domain.

New PetitPotam NTLM Relay Attack Lets Hackers Take Over Windows Domains New PetitPotam NTLM Relay Attack Allows Hackers To Take Control Of Windows Domains

A U.K. citizen has been arrested in the Spanish town of Estepona over his alleged involvement in the July 2020 hack of Twitter, resulting in the compromise of 130 high-profile accounts.

Another Hacker Arrested for 2020 Twitter Hack and Massive Bitcoin Scam A hacker has been arrested for participating in a massive Bitcoin scam that was connected to the 2020 Twitter hack.

China Vulnerability Disclosure Program

The Cyberspace Administration of China (CAC) has issued new stricter vulnerability disclosures regulations that mandate security researchers uncovering critical flaws in computer systems to mandatorily disclose them first-hand to the government authorities within two days of filing a report.

China's New Law Requires Researchers to Report All Zero-Day Bugs to Government New Law in China Requires Researchers to Report All Zero-Day Bugs to Government

Cybersecurity researchers have opened the lid on the continued resurgence of the insidious Trickbot malware, making it clear that the Russia-based transnational cybercrime group is working behind the scenes to revamp its attack infrastructure in response to recent counter efforts from law enforcement.

Trickbot Malware Returns with a new VNC Module to Spy on its Victims Trickbot malware has returned with a new VNC module to spy on its victims

Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws, of which four are said to be under active attacks in the wild, potentially enabling an adversary to take control of affected systems.

Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws

A sophisticated social engineering attack undertaken by an Iranian-state aligned actor targeted think tanks, journalists, and professors with an aim to solicit sensitive information by masquerading as scholars with the University of London's School of Oriental and African Studies (SOAS).

Iranian Hackers Posing as Scholars Target Professors and Writers in Middle-East Iranian Hackers Posing as Scholars Target Professors and Writers in the Middle East.

Never Ends !!!!!!!!

Chinese Hackers Exploit Latest SolarWinds 0-Day to Target U.S. Defense Firms Microsoft says Chinese hackers exploited the recently disclosed zero-day vulnerability in SolarWinds Serv-U FTP Software to target US defense firms.

U.S. technology firm Kaseya, which is firefighting the largest ever supply-chain ransomware strike on its VSA on-premises product, ruled out the possibility that its codebase was unauthorizedly tampered with to distribute malware.

Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly Kazeya rules out supply-chain attacks and claims that a VSA 0-Day directly impacted its customers.