SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar.
Nearly $60 million stolen in crypto wallet drainer campaign.
According to Scam Sniffer, the attackers leveraged 10,000 phishing sites, many advertised via ads on Google and X. Xamalicious backdoor infected many Android devices.
A stealthy backdoor named Xamalicious has infected at least 320,000 Android devices through Google Play.
McAfee has identified roughly two dozen applications delivering the malware and the security firm has published a detailed technical analysis of the threat.
Microsoft says threat actors abusing App Installer for malware delivery.
Microsoft warns of multiple financially motivated threat actors abusing the ms-appinstaller URI scheme for malware distribution.
Cybercrime groups such as Storm-0569, Storm-1113, Sangria Tempest, and Storm-1674 are using malvertising and Microsoft Teams phishing schemes to deploy trojans, backdoors, information stealers, and ransomware.
In response, Microsoft has disabled the ms-appinstaller URI scheme handler by default in App Installer build 1.21.3421.0.
Prepaid mobile carrier Mint Mobile is informing customers about a data breach that involved unauthorized access to their information, including names, phone numbers, email addresses, SIM and IMEI numbers, and service plan data.
Video game giant Ubisoft has launched an investigation after an unknown threat actor claimed to have had access to its systems for roughly 48 hours.
The attacker claimed it attempted to exfiltrate 900 Gb of data, but its access was cut off by the company.
The National Aeronautics and Space Administration has released its first Space Security Best Practices Guide, meant to improve space mission security for both public and private sectors.
The agency welcomes feedback from the community to include in future iterations of the guidance.
The agency recommends that the 5-year-old formal agreement between the FDA and the cybersecurity agency CISA, which collaborate on security guidance for device manufacturers and public alerts, should be updated to improve coordination and clarify roles.
Security firm executive arrested in Kazakhstan at request of US will be extradited to Russia.
Nikita Kislitsin, a senior executive at FACCT, the Russian spinoff of Group-IB, will be extradited by Kazakhstan to Russia, despite being arrested there at the request of the United States, where he is wanted for allegedly buying personal information obtained through the 2012 LinkedIn hack.
TikTok blames bug for iPhone users being asked to provide passcodes.
TikTok claims that a bug was to blame for iPhone users being prompted to provide their passcodes and that the issue has been resolved.
The issue was related to an update rolled out in the US and impacted only a small number of users.
This Cyber News was published on www.securityweek.com. Publication date: Fri, 29 Dec 2023 14:13:05 +0000