Es ist mal wieder soweit, der monatliche Patchday steht an und es ist für jeden was dabei. ;)
Vulnerabilities & Patches
- Microsoft’s February 2022 Patch Tuesday Addresses 48 CVEs (CVE-2022-21989)
- Citrix Releases Security Updates for Hypervisor
- Adobe Releases Security Updates for Multiple Products
- Patchday: Lücken in SAP-Produkten ermöglichen Codeschmuggel
- Microsoft fixes Defender flaw letting hackers bypass antivirus scans
- QNAP Update QTS 5.0.0.1932 build 20220129 schließt SAMBA-Schwachstelle CVE-2021-44142
- Apple Releases iOS, iPadOS, macOS Updates to Patch Actively Exploited Zero-Day Flaw
- PHP Everywhere RCE flaws threaten thousands of WordPress sites
- Mozilla fixes Firefox bug letting you get Windows admin privileges
- Google fixes remote escalation of privileges bug on Android
Incidents
- On the Irish Health Services Executive Hack
- Web Skimmer Injected Into Hundreds of Magento-Powered Stores
- "Terroristischer Akt": Vodafone Portugal nach Cyberattacke komplett ausgefallen
- Hackers Backdoored Systems at China's National Games Just Before Competition
- Ransomware Attack on Aviation Services Firm Swissport Leads to Flight Delays
- Puma hit by data breach after Kronos ransomware attack
Cybercrime
- Russian APT Steps Up Malicious Cyber Activity in Ukraine
- ModifiedElephant APT hackers plant incriminating evidence on victims devices
- Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts
- Russian Law Enforcement Take Down Several Cybercrime Forums | SecurityWeek.Com
- Spy agencies using dating apps to recruit sources
- Growing Tension Between Russia and Ukraine: Should you be concerned?
- US-Justiz verhaftet 2 Amerikaner wegen Crypto-Hack; Bitcoins für 3,6 Milliarden US $ beschlagnahmt
- Ransomware gang affiliate sentenced to 7 years
- Russian APT Hackers Used COVID-19 Lures to Target European Diplomats
- NetWalker ransomware affiliate sentenced to 80 months in prison
Malware
- Vorsicht: audacity.de und keepass.de verbreiten Malware (Feb. 2022)
- CinaRAT Delivered Through HTML ID Attributes
- FBI Publishes Indicators of Compromise for LockBit 2.0 Ransomware
- Fake Windows 11 upgrade installers infect you with RedLine malware
- Master decryption keys for Maze, Egregor, and Sekhmet ransomware leaked online
- 'Roaming Mantis' Android Malware Targeting Europeans via Smishing Campaigns
- Komplexe Mac-Malware holt sich per Safari Admin-Rechte im Vorbeisurfen