"Emotet is back after a three-month hiatus."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 20 March 2023, 1340 UTC. Content supplied by "Security News Bundle" via https://feedly.com.

Source: https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/7737d3c9-5fe2-4b34-8708-85e57085f895 ("Security News Bundle").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net and https://paper.li/RussellRoberts).

Security News Bundle

22

MOST POPULAR

Emotet is back after a three-month hiatus

6 TTPs

•

Security Affairs / 2h

•

Emotet Microsoft OneNote

The infamous Emotet malware is back after a short hiatus, threat actors are spreading it via Microsoft OneNote email attachments. The Emotet malware returns after a three-month hiatus and threat actors are distributing it via Microsoft OneNote email attachments to avoid detection. The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA

BBC to staff: Uninstall TikTok from our corporate kit unless you can 'justify' having it

BBC Staff TikTok Devices

•

The Register – Security / 50min

Those with sensitive BBC information told to contact Beeb's security team The world's oldest national broadcaster, the venerable British Broadcasting Corporation, has told staff they shouldn't keep the TikTok app on a BBC corporate device unless there is a "justified business reason."…

Chinese-linked hackers deployed the most zero-day vulnerabilities in 2022, researchers say

CyberScoop / 1h

Researchers at the threat intelligence firm Mandiant observed the use of 55 zero-day vulnerabilities in 2022. That’s a decrease from 2021 — when researchers recorded a whopping 81 — but a figure that nonetheless represents an overall rise in recent years of hackers exploiting previously unknown software vulnerabilities, which are a potent tool for digital spies and cybercriminals. The long-term t

TODAY

Mispadu Banking Trojan Targets Latin America: 90,000+ Credentials Stolen

13 TTPs

•

The Hacker News / 24min

A banking trojan dubbed Mispadu has been linked to multiple spam campaigns targeting countries like Bolivia, Chile, Mexico, Peru, and Portugal with the goal of stealing credentials and delivering other payloads. The activity, which commenced in August 2022, is currently ongoing, Ocelot Team from Latin American cybersecurity firm Metabase Q said in a report shared with The Hacker News. Mispadu (

Fighting VPN Criminalization Should Be Big Tech's Top Priority

Packet Storm Security / 42min

[no content]

Go-Based HinataBot Latest Botnet To Focus On DDoS Attacks

3 TTPs

•

Packet Storm Security / 42min

•

New HinataBot DDoS

[no content]

Chinese Warships Seem To Be Messing With Passenger Planes

Qantas Chinese Australia

•

Packet Storm Security / 42min

[no content]

Inside The DEA Tool Hackers Allegedly Used To Extort Targets

Packet Storm Security / 42min

[no content]

The FBI Warns SIM Swapping Attacks Are Rising. What's That?

Packet Storm Security / 42min

[no content]

US Authorities Arrest Alleged BreachForums Owner And FBI Hacker Pompompurin

Pompompurin BreachForums

•

27Packet Storm Security / 42min

[no content]

Hitachi Energy Blames Data Breach on Zero-Day as Ransomware Gang Threatens Firm

Exploitation for Client Execution (Enterprise T1203)

•

SecurityWeek / 1h

Hitachi Energy has blamed a data breach affecting employees on the recent exploitation of a zero-day vulnerability in Fortra’s GoAnywhere solution. The post appeared first on SecurityWeek .

NBA Notifying Individuals of Data Breach at Mailing Services Provider

NBA Fans Data Breach

•

SecurityWeek / 1h

NBA is notifying individuals that their information was stolen in a data breach at a third-party mailing services provider. The post appeared first on SecurityWeek .

New Cyber Platform Lab 1 Decodes Dark Web Data to Uncover Hidden Supply Chain Breaches

47The Hacker News / 2h

This article has not been generated by ChatGPT. 2022 was the year when inflation hit world economies, except in one corner of the global marketplace – stolen data. Ransomware payments fell by over 40% in 2022 compared to 2021. More organisations chose not to pay ransom demands, according to findings by blockchain firm Chainalysis. Nonetheless, stolen data has value beyond a price tag, and in

Researchers Shed Light on CatB Ransomware's Evasion Techniques

6 TTPs

•

33The Hacker News / 2h

The threat actors behind the CatB ransomware operation have been observed using a technique called DLL search order hijacking to evade detection and launch the payload. CatB, also referred to as CatB99 and Baxtoy, emerged late last year and is said to be an "evolution or direct rebrand" of another ransomware strain known as Pandora based on code-level similarities. It's worth noting that the use

Adobe Acrobat Sign Abused to Distribute Malware

Adobe Acrobat Sign

•

SecurityWeek / 3h

Cybercriminals are abusing the Adobe Acrobat Sign service in a campaign distributing the RedLine information stealer malware. The post appeared first on SecurityWeek .

New York Man Arrested for Running BreachForums Cybercrime Website

Pompompurin BreachForums

•

SecurityWeek / 3h

Conor Brian Fitzpatrick of New York was arrested and charged last week for allegedly running the popular cybercrime forum BreachForums. The post appeared first on SecurityWeek .