The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published an analysis of the FiveHands ransomware, roughly one week after FireEye’s Mandiant security researchers reported seeing the malware in recent attacks.
Security News
Google this week announced that it is introducing a new policy for the Google Play app store, requiring all developers to provide information on their data collection practices.
Read more: Android App Developers Required by Google to Share More Info on Data Handling
VMware has patched another critical vulnerability reported by Positive Technologies, a Russian cybersecurity firm that was recently by the United States.
read more
Read more: VMware Patches Critical Flaw Reported by Sanctioned Russian Security Firm
Billions of Android devices are exposed to a vulnerability in Qualcomm’s Mobile Station Modem (MSM) chip
A vulnerability in Qualcomm’s Mobile Station Modem (MSM) chip– installed in around 30% of the world’s mobile devices – can be exploited from within Android.
Read more: Qualcomm Modem Chip Flaw Exploitable From Android: Researchers
Some DNS resolvers are affected by a vulnerability that can be exploited to launch distributed denial-of-service (DDoS) attacks against authoritative DNS servers, a group of researchers warned this week.
Read more: TsuNAME Vulnerability Can Be Exploited for DDoS Attacks on DNS Servers
In an apparent industry first, the global insurance company AXA said Thursday it will stop writing cyber-insurance policies in France that reimburse customers for extortion payments made to ransomware criminals.
Read more: Insurer AXA Halts Ransomware Crime Reimbursement in France
The infamous cybercrime organization known as Evil Corp may be running cyberespionage operations on behalf of a Russian intelligence agency, security consulting company Truesec reports.
Read more: Russian Evil Corp Cybercriminals Possibly Evolved Into Cyberspies