

This Week in Security News - Jan. 15, 2021
January Patch Tuesday Repairs Critical MS Defender RCE Bug and Authorities Take Down World's Largest Illegal Dark Web Marketplace
The onset of the new decade has challenged the cybersecurity sector — and industries as a whole. What will change? We identify some of the drivers that will underpin organizations’ priorities in 2021.
January Patch Tuesday Repairs Critical MS Defender RCE Bug and Authorities Take Down World's Largest Illegal Dark Web Marketplace
The cloud is an environment full of potential, providing easy access to technologies that weren’t available a decade ago. However, its not always as sunny as it seems. Continue on to read about the top worry in cloud security for the upcoming year.
Microsoft welcomed the first month of 2021 with a total of 83 security updates — which is an uptick from December’s relatively lighter list.
Investigation Launched into Role of JetBrains Product in SolarWinds Hack and TeamTNT Now Deploying DDoS-Capable IRC Bot TNTbotinger
RansomExx is a ransomware variant responsible for several high-profile attacks in 2020. We take a look at its current techniques which include the use of trojanized software to deliver malicious payloads and an overall short and fast attack.
In early December 2020, the FBI issued a warning regarding DoppelPaymer, a ransomware family that first appeared in 2019. Its activities continued throughout 2020, including incidents that left its victims struggling to properly carry out their operations.
We discovered a new campaign we named Earth Wendigo that has been targeting several organizations in Taiwan - since May 2019, aiming to exfiltrate emails from targeted organizations via the injection of JavaScript backdoors to a webmail system that is widely used in Taiwan.
Many kids now have school-supplied computer equipment away from the school network. However, with this come privacy and security concerns. Some are easy to avoid, but others need some modifications to ensure safety.
Pawn Storm Employs Lack of Sophistication as a Strategy and SolarWinds Says Affected Enterprises Must Use Hot Patches and Isolate Compromised Gear
We discuss TeamTNT’s latest attack, which involves the use of the group’s own IRC (Internet Relay Chat) bot. The IRC bot is called TNTbotinger and is capable of distributed denial of service (DDoS).