The top phishing campaign detected was against Facebook accounts with 109 instances detected.
Chromium Browsers are getting Intel CET support
Chromium-based web browsers including Microsoft Edge and Google Chrome will be adding support for Intel's Control-flow Enforcement Technology (CET) a hardware security feature designed to prevent an array of vulnerabilities.
Intel's CET feature will protect programs against Return Orientated Programming (ROP), and Jump Orientated Programming (JOP) cyberattacks, designed to disrupt and applications flow for malicious code to be executed instead.
Vulnerabilities include attacks that bypass a browsers sandbox or perform remote code execution while visiting websites. CET provides a solution that blocks these attempts by triggering exceptions when natural power flow is altered.
Mozilla is also looking to add support within Firefox for Intel CET. However, there has been no recent update concerning the implementation.
Hugely popular 'The Great Suspender' Chrome extension contains malware
Last Thursday, Google removed access to one of their most popular extensions 'The Great Suspender' for containing malware. The extension was prevalent and used globally by millions to suspend inactive tabs and unload its resources to decrease the browser's memory usage.
Google took the unusual step of forcibly uninstalling the extensions from all their browsers when they became aware that the extension had secretly added new features that included code that tracked users' online behaviour and executed code from a remote server with malicious intent.
Concerns were initially raised late last year when the original developer, sold the extension to an unknown party, who set out to target and exploit the users of this extension for advertising fraud, tracking amongst other criminal behaviours.
Ziggy ransomware shuts down and released their victims decryption keys
The Ziggy ransomware gang has closed its operations and released their victims' decryption keys for fear of being imprisoned and feeling guilty for their actions.
This month, the Ziggy ransomware admin posted a SQL file containing 922 decryption keys for their encrypted victims. For each victim, the SQL file lists three keys needed to decrypt their encrypted files.
Sandworm Hackers Hit French Monitoring Software Vendor Centreon
The French information security agency ANSSI published an advisory warning that hackers with links to 'Sandworm' a group located within Russia's GRU Military intelligence agency have breached multiple French organisations servers running IT monitoring software Centreon from late 2017 to 2020.
Centron has noted that none of their customers was impacted by the latest attack. However, only fifteen entities were targeted by this campaign, and they all utilised Centron's free and obsolete version of their software, which hasn't been supported for over five years.
China
United States
Russia
Vietnam
Singapore
India
Others
