NetSec Google shows search results only from cybersecurity sites.

Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.

Accessed on 26 June 2022, 2143 UTC.

Content supplied by "Security News Bundle" via https://feedly.com.

Source: https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/7737d3c9-5fe2-4b34-8708-85e57085f895

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts 

https://www.hawaiicybersecurityjournal.net

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, information security)

Security News Bundle

8

MOST POPULAR

NetSec Goggle shows search results only from cybersecurity sites

100+BleepingComputer / 5h

A new Brave Search Goggle modifies Brave Search results to only show reputable cybersecurity sites, making it easier to search for and find security information. [...]

Clever phishing method bypasses MFA using Microsoft WebView2 apps

Keylogging (Enterprise T1056.001)

•

92BleepingComputer / 5h

A clever, new phishing technique uses Microsoft Edge WebView2 applications to steal victim's authentication cookies, allowing threat actors to bypass multi-factor authentication when logging into stolen accounts. [...]

Threat actors sell access to tens of vulnerable networks compromised by exploiting Atlassian 0day

Security Affairs / 3h

A threat actor is selling access to 50 vulnerable networks that have been compromised exploiting the recently disclosed Atlassian Confluence zero-day. A threat actor is selling access to 50 vulnerable networks that have been compromised by exploiting the recently discovered Atlassian Confluence zero-day flaw ( CVE-2022-26134 ). The discovery was made by the Rapid7 Threat Intelligence team and was

TODAY

LGBTQ+ community warned of extortionists abusing dating apps

21BleepingComputer / 5h

The U.S. Federal Trade Commission (FTC) has warned this week of extortion scammers targeting the LGBTQ+ community by abusing online dating apps like Grindr and Feeld. [...]

Fake copyright infringement emails install LockBit ransomware

Data Encrypted for Impact (Enterprise T1486)

•

90BleepingComputer / 5h

LockBit ransomware affiliates are using an interesting trick to get people into infecting their devices by disguising their malware as copyright claims. [...]

Security Affairs newsletter Round 371 by Pierluigi Paganini

Security Affairs / 7h

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box.

China-linked APT Bronze Starlight deploys ransomware as a smokescreen

DLL Search Order Hijacking (Enterprise T1574.001)

•

Security Affairs / 8h

China-linked APT Bronze Starlight is deploying post-intrusion ransomware families as a diversionary action to its cyber espionage operations. Researchers from Secureworks reported that a China-linked APT group, tracked as Bronze Starlight (APT10), is deploying post-intrusion ransomware families to cover up the cyber espionage operations.

YESTERDAY

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Russia Texas LNG June 8

•

34Security Affairs / 12h

Russian threat actors may be behind the explosion at a liquefied natural gas plant in Texas, the incident took place on June 8. A Russian hacking group may be responsible for a cyber attack against a liquefied natural gas plant in Texas that led to its explosion on June 8 . The explosion took place at the Freeport Liquefied Natural Gas (Freeport LNG) liquefaction plant and export terminal on Texa

END OF FEED