Ionut Arghire

Cryptojacking Applications Land in Microsoft Store

Eight applications designed to mine for crypto-currency without users’ knowledge made their way into the Microsoft Store, Symantec has discovered.

New Variant of Shlayer macOS Malware Discovered

Carbon Black’s security researchers recently discovered a new variant of the Shlayer malware that targets macOS versions ranging from 10.10.5 to 10.14.3.

6,500 Publicly Disclosed Data Breaches in 2018: Report

Over 5 billion records were exposed last year in 6,515 publicly disclosed data breaches, a new report from Risk Based Security reveals.

IT Asset Management Firm Axonius Raises $13 Million

Cybersecurity asset management company Axonius this week announced that it has raised $13 million in a Series A funding round led by Bessemer Venture Partners.

Windows App Caught Running on Mac, Installing Malware

A Windows application that can run on Macs has been caught downloading and installing malware.

SAP Patches Critical Vulnerability in HANA XSA

SAP's February 2019 security updates address over a dozen vulnerabilities across its product portfolio, including a Hot News flaw in SAP HANA Extended Application Services.

UK Data Intelligence Firm to Acquire IDology for $300 Million

UK-based Identity Data Intelligence specialist GBG has agreed to acquire the Atlanta-based identity verification and fraud prevention services provider IDology for $300 million in cash.

Hacker Erases Email Provider's Servers, Backups

Email provider VFEmail was hit by a destructive attack, where a hacker who accessed its network was able to erase its servers in the United States, including the backup systems.

Unofficial Patch Released for Adobe Reader Zero-Day

One day before Adobe’s monthly security updates, a third-party fix has been released for an Adobe Reader vulnerability revealed several weeks ago.

macOS Vulnerability Leaks Safari Data

A vulnerability in the latest macOS release could allow a malicious application to access restricted Safari data, an application developer has discovered.

Container Escape Flaw Hits AWS, Google Cloud, Linux Distros

A vulnerability in the runc container runtime could allow malicious containers to achieve root-level code execution on the host. AWS, Google Cloud and Linux distributions are affected.

Clipper Malware Slips Into Google Play

A piece of Android malware capable of hijacking users’ crypto-currency transactions has slipped into Google Play, ESET security researchers have discovered.

Senators Concerned Over DHS Employees Using Foreign VPNs

United States senators have voiced concerns over the use of foreign-made Virtual Private Network (VPN) applications within the Department of Homeland Security.

Linux Miner Removes Competing Malware From Infected Systems

A recently observed coin miner targeting Linux machines can remove a broad range of other malware families from infected systems, Trend Micro’s security researchers reveal.

Google Improves Android Encryption with Adiantum

Google has introduced a new form of encryption called "Adiantum" for Android devices without cryptographic acceleration.

Site Isolation is Coming to Firefox

Mozilla is getting ready to boost the security of Firefox users with the addition of Site Isolation in the not too distant future.

Carbonite to Acquire Webroot for $618 Million in Cash

Cloud-based data backup provider Carbonite has agreed to acquire cybersecurity company Webroot for roughly $618.5 million in cash.

Google Open Sources Fuzzing Platform

Google announced this week that it has open sourced ClusterFuzz, the fuzzing infrastructure it built to help finding memory corruption bugs in Chrome.

Phishers Serve Fake Login Pages via Google Translate

A recent phishing attack targeting mobile users leveraged Google Translate to serve fake login pages to Google and Facebook users.

Fortinet Introduces New Next-Generation Firewalls

Fortinet this week announced new FortiGate Next-Generation Firewalls (NGFWs), designed to help customers improve security through implementing Intent-based Segmentation.

Chinese Hackers Spy on U.S. Law Firm, Major Norwegian MSP

The China-linked cyberspy group known as APT10 has targeted a US law firm, a major Norwegian MSP, and an international apparel company in an extended cyber-espionage campaign.

Scammers Abuse Gmail Address Feature in Fraud Attacks

A group of scammers has been abusing a Gmail feature that gives users control over all dotted versions of their Gmail addresses.

New LuckyCat-Linked RAT Targets Users in Tibet

A malware attack using a newly discovered backdoor has been targeting the mailing list of the organization officially representing the Tibetan government-in-exile.

Microsoft Brings Security Notifications to Authenticator App

Microsoft has updated its Authenticator application to provide users with security notifications whenever suspicious activity is detected on their accounts.

New Backdoor Targets Linux Servers

A new backdoor is targeting Linux servers in East Asia and Latin America, including Amazon Web Services (AWS) hosted machines, Check Point security researchers say.

SECURITYWEEK NETWORK:

Security Experts:

Recent articles by Ionut Arghire

SecurityWeek Daily Briefing

Popular Topics

Security Community

Stay Intouch

About SecurityWeek