DecryptedTech Feed (3878)
Tuesday, 06 June 2023 15:08
More Ransomware as a Service Fun as Cyclops Gang Now Offers Value Add Information Stealer
Written by Sean Kalinich
Anyone that does not think that cybercrime is now a bug business has been living under a rock. The news related to different cybercrime-as-a-service groups, especially ransomware, has never been more frequent. We have seen groups offer larger profit sharing,…
Read 921 times
Published in
News
Tuesday, 06 June 2023 11:43
Why SBOM is in the News and Why it is Important
Written by Sean Kalinich
Since Executive Order 14028 came out on May 12th from the Biden Administration there has been a lot of talk about what it means and what are the legal and regulatory ramifications of this order. While the larger conversation is…
Read 530 times
Published in
Security Talk
Monday, 05 June 2023 15:10
Attackers Drop Card Stealing Scripts into Legitimate eCommerce Sites
Written by Sean Kalinich
So, there you are, you have found the one thing in all the internet that will make your object drive life complete. You put the fabulous object into your cart, giddily fumble out your credit card and enter those embossed…
Read 1235 times
Published in
News
Monday, 05 June 2023 11:12
MOVEit Transfer Zero Day gets added to the KEV and a Cool New Web Shell
Written by Sean Kalinich
Spring, the time of renewal, the time when nature wakes up. It is also a time when Zero-Day flaws hit the web. This year has been no different with many Zero-Day flaws identified in April and May 2023. The reasons…
Read 740 times
Published in
News
Monday, 05 June 2023 10:20
Google’s Verification Feature in Gmail already Abused by Scammers and Phishers
Written by Sean Kalinich
The news that a feature in Gmail that shows a verification check mark for a sender is being abused by attackers should come as a surprise to no one. After all attackers have coopted, code singing certificates, legitimate web sites,…
Read 1523 times
Published in
News
Friday, 02 June 2023 14:46
New APT Group targeting iOS Users with Zero-Click Malware, US gets the Blame
Written by Sean Kalinich
There is a new bit of malware targeting iOS users via iMessage from what appears to be a new APT (Advanced Persistent Threat) group. The campaign appears to have been in play since some time in 2019. The malware, according…
Read 907 times
Published in
News
Friday, 02 June 2023 13:07
AI Drone Decided Humans Were an Obstacle to be Removed in Simulated Test
Written by Sean Kalinich
The arguments for and against AI as a threat all seem to be centered on the point of AGI (Artificial General Intelligence). This is the point where the reasons skills of AI are on par with the average human brain.…
Read 1383 times
Published in
Editorials
Friday, 02 June 2023 12:01
32 Malicious Google Chrome Extensions Removed from the Chrome Web Store
Written by Sean Kalinich
Google’s Chrome (and derivatives) is one of the more popular browsers on the market. It reached the height of popularity via a well-orchestrated marketing push, dissatisfaction with Microsoft, and being one of the faster and more secure browsers (at the…
Read 1406 times
Published in
News
Friday, 02 June 2023 10:00
Microsoft’s Xbox and Activision Both Considering Pulling Games out of the UK to get around CMA Block
Written by Sean Kalinich
Remember how the EU regulators said the Microsoft Activision deal was pro competition and pro-consumer? Well, I wonder what they might be thinking now as news is dropping saying that both Microsoft and Activision are considering pulling games out of…
Read 1243 times
Published in
Game Thoughts
Thursday, 01 June 2023 13:41
RaaS group Updates their Software with Better Performance and Stealthy Features
Written by Sean Kalinich
The group behind BlackCat ransomware seem to be following some good business practices as they have launched a new variant with improved performance (faster encryption) and detection evasion. First identified in February of 2023 the new variant has been given…
Read 891 times
Published in
News
Thursday, 01 June 2023 11:05
RedFall – How to Enjoy an Awkward, Buggy, and Confusing Game
Written by Sean Kalinich
For the second of our game reviews, since returning to covering games, we decided to look at the Microsoft flagship game RedFall. If you have heard of this game, it has probably been in a negative light. Most reviews have…
Read 1694 times
Published in
Game Thoughts
Thursday, 01 June 2023 11:02
RedFall Developers Hoped the Game would get Cancelled Before Launch
Written by Sean Kalinich
RedFall by Akrane Austin was not a well-received game. It has been pretty much panned by everyone that played it. The complaints range from a bad story line and plot to bad graphics, game lag and terrible AI (you can…
Read 1177 times
Published in
Game Thoughts
Thursday, 01 June 2023 08:26
Claimed EDR Killer Found to be a Vulnerable AV Driver Similar to Past Evasion Techniques
Written by Sean Kalinich
A couple of days ago an email was sent to me about a new tool kit being sold on the darker side of the internet. The claim what that this new tool could kill the processes behind “any” AV, EDR,…
Read 685 times
Published in
News
Wednesday, 31 May 2023 16:51
Gigabyte Shipped Millions of Motherboards with a Massively Insecure UEFI Patch Function
Written by Sean Kalinich
This one goes in both the “failure of imagination” and “this is why we can’t have nice things” category. It seems that Gigabyte, for some reason, decided to embed an insecure update function into the UEFI BIOS of their motherboards,…
Read 521 times
Published in
News
Wednesday, 31 May 2023 16:08
Cuba Ransomware Group Linked RomCom Being Spread Through Ads for Real and Fake Software
Written by Sean Kalinich
The RomCom backdoor malware appears to have a new campaign running. The new campaign is using impersonation attacks for different software packages (some real, some not). The goal is to trick the unwary into downloading, and hopefully launching malicious payloads.…
Read 514 times
Published in
News
Wednesday, 31 May 2023 13:36
The Barracuda Zero Day Flaw Shows Us Why Mean Time to Remediation Matters
Written by Sean Kalinich
On May 19th 2023 Barracuda disclosed that there was a critical vulnerability in their Email Security Gateway appliances. This vulnerability is tracked under CVE-2023-2868 and is listed as a remote command injection vulnerability. The flaw is present in software versions…
Read 837 times
Published in
News