DigeeX @digeex@noc.social

Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them - Microsoft Security: https://www.microsoft.com/security/blog/2020/11/30/threat-actor-leverages-coin-miner-techniques-to-stay-under-the-radar-heres-how-to-spot-them/

This new cyberattack can dupe DNA scientists into creating dangerous viruses and toxins | ZDNet: https://www.zdnet.com/article/this-new-cyberattack-can-dupe-scientists-into-creating-dangerous-viruses-toxins/

German users targeted with Gootkit banker or REvil ransomware - Malwarebytes Labs | Malwarebytes Labs : https://blog.malwarebytes.com/threat-analysis/2020/11/german-users-targeted-with-gootkit-banker-or-revil-ransomware/

Baltimore students told to ditch Windows PCs after ransomware attack: https://www.bleepingcomputer.com/news/security/baltimore-students-told-to-ditch-windows-pcs-after-ransomware-attack/

Healthcare provider AspenPointe data breach affects 295K patients: https://www.bleepingcomputer.com/news/security/healthcare-provider-aspenpointe-data-breach-affects-295k-patients/

A hacker is selling access to the email accounts of hundreds of C-level executives | ZDNet: https://www.zdnet.com/article/a-hacker-is-selling-access-to-the-email-accounts-of-hundreds-of-c-level-executives/

CBS Last.fm fixes admin password leakage via Symfony profiler: https://www.bleepingcomputer.com/news/security/cbs-lastfm-fixes-admin-password-leakage-via-symfony-profiler/

Second Swiss firm allegedly sold encrypted spying devices - SWI swissinfo.ch: https://www.swissinfo.ch/eng/second-swiss-firm-allegedly-sold-encrypted-spying-devices/46186432

UK urges orgs to patch critical MobileIron CVE-2020-15505 RCE bug: https://www.bleepingcomputer.com/news/security/uk-urges-orgs-to-patch-critical-mobileiron-cve-2020-15505-rce-bug/

Windows RpcEptMapper Service Insecure Registry Permissions EoP | PS C:\Users\itm4n> _: https://itm4n.github.io/windows-registry-rpceptmapper-eop/

cPanel 2FA bypassed in minutes via brute-force attacks: https://www.bleepingcomputer.com/news/security/cpanel-2fa-bypassed-in-minutes-via-brute-force-attacks/

Ransomware hits largest US fertility network, patient data stolen: https://www.bleepingcomputer.com/news/security/ransomware-hits-largest-us-fertility-network-patient-data-stolen/

Networking equipment vendor Belden discloses data breach | ZDNet: https://www.zdnet.com/article/networking-equipment-vendor-belden-discloses-data-breach/

Report: Spotify Targeted in Potential Fraud Scheme: https://www.vpnmentor.com/blog/report-spotify-scam/

TikTok fixes bugs allowing account takeover with one click: https://www.bleepingcomputer.com/news/security/tiktok-fixes-bugs-allowing-account-takeover-with-one-click/

The smart video doorbells letting hackers into your home – Which? News: https://www.which.co.uk/news/2020/11/the-smart-video-doorbells-letting-hackers-into-your-home/

Belgian security researchers from KU Leuven and imec demonstrate serious flaws in Tesla Model X keyless entry system | imec: https://www.imec-int.com/en/press/belgian-security-researchers-ku-leuven-and-imec-demonstrate-serious-flaws-tesla-model-x

Walmart-exclusive router and others sold on Amazon & eBay contain hidden backdoors to control devices | CyberNews: https://cybernews.com/security/walmart-exclusive-routers-others-made-in-china-contain-backdoors-to-control-devices/

Report: Popular Christian Faith App Exposes Millions of People to Fraud and Online Attack: https://www.vpnmentor.com/blog/report-pray-breach/

Hacker posts exploits for over 49,000 vulnerable Fortinet VPNs: https://www.bleepingcomputer.com/news/security/hacker-posts-exploits-for-over-49-000-vulnerable-fortinet-vpns/