SpyFone & CEO Banned From Stalkerware Biz

The federal government is pushing hard for agencies to adopt zero-trust cybersecurity architectures, with new guidance released Tuesday from the administration’s policy arm—the Office of Management and Budget—and lead cybersecurity agency—the Cybersecurity and Infrastructure Security Agency. The administration released several documents Tuesday for public comment, seeking feedback on the overarching federal policy from OMB and draft…

Security researchers document 21 major security vulnerabilities in Exim and warn that users are exposed to remote code execution flaws  Security researchers at Qualys have discovered multiple gaping security holes in Exim, a widely deployed mail server that has been targeted in the past by advanced nation state-based threat actors. An advisory from Qualys documents…

Executive Summary This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary Informations Name CVE-2020-25709 First vendor Publication 2021-05-18 Vendor Cve Last vendor Modification 2021-05-18 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA…

Written by Tim Starks Sep 16, 2021 | CYBERSCOOP As law enforcement braces for the revival of the REvil ransomware gang, a cybersecurity firm on Thursday released a free decryption tool for early victims of the criminals. The decryptor, which Bitdefender developed in coordination with an unnamed law enforcement partner, will aid victims hit before…

Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Fraud Risk Management Group Used Fresh Tactic to Target South Korea Doug Olenick (DougOlenick) • April 21, 2021     The form Lazarus uses to lure in its victims (Source: Malwarebytes) Malwarebytes researchers report the North Korean advanced persistent threat group Lazarus rolled out a…

Cryptocurrency Fraud , Cybercrime , Fraud Management & Cybercrime Prosecutors: Yearslong Scheme Resulted in Theft of $530,000 Prajeet Nair (@prajeetspeaks) • April 29, 2021     A Massachusetts man has pleaded guilty to running a yearslong scam that used SIM swapping and other hacking techniques to steal more than $530,000 worth of cryptocurrency, the U.S….