Facebook’s Oversight Board upholds Trump suspension The board upheld Facebook’s decision to suspend former US President Donald Trump, saying his posts ahead of the January 6th Capitol riots created “an environment where a serious risk of violence was possible.” However…
A look at the Project Signal ransomware campaign Security researchers at Flashpoint identified the ransomware campaign, seemingly organized by Iran’s Islamic Revolutionary Guard Corps using the contracting company ENP. The project began in the late summer of 2020, with malicious…
Babuk ransomware operators announce shutdown In a forum post titled “Hello World 2,” the operators said they intend to close up shop. Often when ransomware groups cease operations, they release their encryption keys. However the Babuk operators plan to make…
Linux malware used to backdoor systems for years Security researchers at Qihoo 360’s Network Security Research Lab discovered the RotaJakiro malware, which first had samples uploaded in 2018, but remained undetected by VirusTotal’s anti-malware engines. Domains for the malware’s C2…
Software bug opened macOS to malware Security researcher Cedric Owens discovered a bug that bypasses many of the checks macOS uses to thwart malware, allowing him to build a potentially malicious app to look like a harmless document. Double clicking…
EU weighs regulations on “high-risk” AI The European Commission proposed a bill that would establish a list of high-risk uses of AI, which would be subject to new standards of development and use, including potential review of algorithms. This would…
Security conferences set for in-person return Organizers for both Def Con and Black Hat security conferences announced that they will hold hybrid events this year, offering remote elements but also returning to in-person meetings. Def Con will require pre-registering for…
FBI patches Exchange server backdoors In March, Microsoft released patches for four newly-discovered Microsoft Exchange vulnerabilities that were being actively exploited by an advanced persistent threat group, believed to be Hafnium. The attackers were exploiting the vulnerabilities to install Web…
Nvidia announces AI-powered tools for cybersecurity At its GTC 2021 virtual conference, the company announced Morpheus, an app framework designed to provide cybersecurity partners with AI skills for detecting and mitigating cybersecurity attacks. Nvidia sees the advantage in Morpheus as…
Slack and Discord file sharing used to spread malware This finding comes from Cisco Talos research, finding this an increasingly common attack vector. Threat actors upload malicious files to the platforms, which are then housed in their CDN and linked…
