WEEKLY TOP TEN | SEPTEMBER 9, 2022 16:58 GMT
Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:
- EvilProxy Phishing-as-a-Service Capable of Bypassing MFA Discovered by Security Researchers
https://securityaffairs.co/wordpress/135318/cyber-crime/evilproxy-phishing-as-a-service.html - Cisco Patches Several Vulnerabilities For Its Products Except for End-of-Life Items
https://securityaffairs.co/wordpress/135464/security/cisco-security-flaws.html - Moobot Botnet Targeting D-Link Routers
https://securityaffairs.co/wordpress/135414/malware/moobot-botnet-targets-d-link.html - Concerted Threat Actor Effort Assigned to Recent PyPI Phishing Scheme
https://thehackernews.com/2022/09/juiceledger-hackers-behind-recent.html - In Wake Of LA School District Ransomware, FBI Warns of Rising Vice Society Ransomware Attacks
https://www.bleepingcomputer.com/news/security/fbi-warns-of-vice-society-ransomware-attacks-on-school-districts/ - North Korean Lazarus Group APT Targeting Energy Providers With Multiple RATs
https://thehackernews.com/2022/09/north-korean-lazarus-hackers-targeting.html - AT&T Discovers Shikitega Malware Targeting Internet-of-Things and Other Linux Devices
https://cybersecurity.att.com/blogs/labs-research/shikitega-new-stealthy-malware-targeting-linux - New Infection Vector Discovered In Use by Bumblebee Loader
https://blog.cyble.com/2022/09/07/bumblebee-returns-with-new-infection-technique/ - Researchers Discover Updated Tactics In Use By Ares Banking Trojan
https://www.zscaler.com/blogs/security-research/ares-banking-trojan-learns-old-tricks-adds-defunct-qakbot-dga - Microsoft Patches Erroneous Windows Defender Alert For Hive.zy On Electron and Chromium Apps
https://securityaffairs.co/wordpress/135326/security/windows-defender-flase-positive.html