SophosLabs Uncut – Page 3 – Computer Security Articles

CryptoRom Bitcoin swindlers continue to target vulnerable iPhone and Android users

March 16, 2022 admin cryptocurrency fraud, cryptorom, fake apps, fake crypto, Featured, iphone malware, SophosLabs Uncut, threat research

Credit to Author: Jagadeesh Chandraiah| Date: Wed, 16 Mar 2022 11:30:21 +0000

Abuse of iOS TestFlight and WebClips—along with social engineering and lookalike web pages—lead to double- and triple-dipping by criminals into victims’ pockets.

Security Sophos

Qakbot injects itself into the middle of your conversations

March 10, 2022 admin Featured, qakbot, Qbot, SophosLabs Uncut, threat research, webinjects

Credit to Author: Steeve Gaudreault| Date: Thu, 10 Mar 2022 11:00:56 +0000

The heavily distributed botnet delivers a wide variety of payloads – and scans your network for weaknesses

Security Sophos

Microsoft patches 71 vulnerabilities including RDP Client, Exchange Server, Intune

March 8, 2022 admin 2022-03, Patch Tuesday, SophosLabs Uncut, threat research

Credit to Author: Christopher Budd| Date: Tue, 08 Mar 2022 19:06:58 +0000

Just two Critical-class vulnerabilities, but Windows Update doesn’t handle every package this month

Security Sophos

Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits

February 28, 2022 admin bazar, cobalt strike, conti, Featured, karma, proxyshell, ransomware, SophosLabs Uncut, threat research

Credit to Author: gallagherseanm| Date: Mon, 28 Feb 2022 12:30:19 +0000

An unpatched Microsoft Exchange Server let both ransomware actors in; Karma just stole data, while Conti encrypted.

Security Sophos

Dridex bots deliver Entropy ransomware in recent attacks

February 23, 2022 admin api, dridex, entropy, Featured, packer, peb, ransomware, SophosLabs Uncut, threat research

Credit to Author: Andrew Brandt| Date: Wed, 23 Feb 2022 11:30:07 +0000

Some code used in the ransomware bear a resemblance to code used in Dridex malware, hinting at a common origin

Security Sophos

Microsoft Fixes 52 Vulnerabilities in February, 2022 Patches

February 9, 2022 admin 2022-02, Patch Tuesday, SophosLabs Uncut

Credit to Author: Christopher Budd| Date: Wed, 09 Feb 2022 18:48:31 +0000

Active Directory, Visual Studio, and Microsoft Dynamics & Power BI business packages also got updates

Security Sophos

“Double agent”: a MacOS bundleware installer that acts like a spy

March 17, 2020 admin Corporate, SophosLabs, SophosLabs Uncut

Credit to Author: Sergei Shevchenko| Date: Tue, 17 Mar 2020 08:00:58 +0000

Security software frequently blocks “bundleware” installers – software distribution tools that bundle their advertised applications with (usually undesired) additional software – as potentially undesirable applications. But one widely-used software distribution tool for MacOS applications goes to great lengths to avoid being blocked as “bundleware” – using a number of anti-forensics techniques that are more common […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/n8Txqmat4RA” height=”1″ width=”1″ alt=””/>

Security Sophos

Patch now! Microsoft releases fixes for the serious SMB bug CVE-2020-0796

March 17, 2020 admin 2020-03, cve-2020-0796, exploit, Patch Tuesday, SMB, smbv3, SophosLabs Uncut, Updates, windows

Credit to Author: alexandrebecholey| Date: Thu, 12 Mar 2020 15:34:59 +0000

Microsoft issues its latest set of cumulative updates for Windows and other Microsoft products this week, but the March, 2020 Patch Tuesday is notable not only because of the sheer volume of fixes, but because it will prevent one very serious bug in its Server Message Block (SMB) technology (download the patch right now) that […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/d5Hn2Ie7ee4″ height=”1″ width=”1″ alt=””/>