Here's the latest cybersecurity update from "Security News Bundle."

Views expressed in this cybersecurity-cyber crime news summary are those of the reporters and correspondents.

Accessed on 09 May 2022, 1317 UTC.

Content provided by "Security News Bundle" via https://feedly.com.

Source:   https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/7737d3c9-5fe2-4b34-8708-8

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts

https://hawaiicybersecurityjournal.blogspot.com

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, and information security)

Security News Bundle

MOST POPULAR

Another Set of Joker Trojan-Laced Android Apps Resurfaces on Google Play Store

Joker Android Google

•

82The Hacker News / 2h

A new set of trojanized apps spread via the Google Play Store has been observed distributing the notorious Joker malware on compromised Android devices. Joker, a repeat offender, refers to a class of harmful apps that are used for billing and SMS fraud, while also performing a number of actions of a malicious hacker's choice, such as stealing text messages, contact lists, and device information.

Hackers are now hiding malware in Windows Event Logs

2 TTPs

•

59BleepingComputer / 1h

•

Windows Event Logs

Security researchers have noticed a malicious campaign that used Windows event logs to store malware, a technique that has not been previously documented publicly for attacks in the wild. [...]

Microsoft Security Experts: Humans and automation to fight off cyber threats

The Register – Security / 2min

"We live this fight ourselves everyday," Microsoft says of enterprise attacks Microsoft is rolling out its "Security Experts" managed service with an eye on stomping down threats and malware.…

TODAY

Ransomware Attack Hits Production Facilities of Agricultural Equipment Giant AGCO

SecurityWeek / 19min

Agricultural equipment giant AGCO says its business operations have been impacted after falling victim to a ransomware attack last week. AGCO designs, makes, and distributes agricultural machinery and precision technology, offering equipment under brands such as Challenger, Fendt, Massey Ferguson, and Valtra. read more

Experts Sound Alarm on DCRat Backdoor Being Sold on Russian Hacking Forums

Keylogging (Enterprise T1056.001)

•

34The Hacker News / 38min

Cybersecurity researchers have shed light on an actively maintained remote access trojan called DCRat (aka DarkCrystal RAT) that's offered on sale for "dirt cheap" prices, making it accessible to professional cybercriminal groups and novice actors alike. "Unlike the well-funded, massive Russian threat groups crafting custom malware [...], this remote access Trojan (RAT) appears to be the work of

Colonial Pipeline faces nearly $1m fine one year after ransomware attack

The Register – Security / 44min

Plus: Unpatched DNS bug puts IoT devices at risk, SolarWinds hackers set up new digs, and a CEO faces hard time for massive mining fraud In Brief Colonial Pipeline is facing an almost $1 million fine for control room management failures after the US Department of Transportation alleged they contributed to the nation's fuel disruption in the wake of the 2021 ransomware attack.…

CERT-UA warns of malspam attacks distributing the Jester info stealer

Warns Jester Stealer

•

Security Affairs / 48min

The Computer Emergency Response Team of Ukraine (CERT-UA) warns of attacks spreading info-stealing malware Jester Stealer. The Computer Emergency Response Team of Ukraine (CERT-UA) has detected malspam campaigns aimed at spreading an info-stealer called Jester Stealer. The malicious messages spotted by the Ukrainian CERT have the subject line “chemical attack” and contain a link to a weaponized M

RubyGems Fixes Critical Gem Takeover Vulnerability

CVE-2022-29176

•

SecurityWeek / 1h

RubyGems has addressed a critical vulnerability that could have allowed any RubyGems.org user to remove and replace certain Ruby gems. A package hosting service for the Ruby programming language, RubyGems.org hosts more than 170,000 gems. RubyGems also functions as a package manager. read more

F5 BIG-IP in Attacker Crosshairs Following Disclosure of Critical Vulnerability

SecurityWeek / 1h

Organizations using F5’s BIG-IP application delivery controllers are advised to immediately update their systems as a recently patched vulnerability is already being exploited in the wild. read more

Podcast: The State of the Secret Sprawl

Threatpost / 2h

In this podcast with Mackenzie Jackson, developer advocate at GitGuardian, we dive into the report and also the issues that corporations face with public leaks from groups like Lapsus and more, as well as ways that developers can keep their code safe.

Cyber attacks cause national emergency in Costa Rica

National Emergency Conti

•

IT Security Guru / 2h

Rodrigo Chaves, President of Costa Rica, has declared a national emergency following a series of cyberattacks on government bodies. According to BleepingComputer , Conti has published the majority of the 672 GB of data appearing to belong to Costa Rican government agencies. Chaves signed the declaration into law on Sunday, May 8th, the same day that the former Minister of Finance effectively beca

China wants its youth to stop giving livestreamers money

The Register – Security / 3h

Internet regulator puts a few practices in place – including viewing curfews and bans on tips China's internet regulator, the Cyberspace Administration of China (CAC), has published guidelines that aim to stop minors from giving tips or other forms of payment to livestreamers, watching afte