Share Blog post
Cyber criminals have yet again released another refined version of the GandCrab ransomware. Going by the name, GandCrab V4, this ransomware appends a new .KRAB extension. After infecting a system, the ransomware includes a new ransom note name and a new TOR payment site. Experts believe that the ransomware has switched its encryption algorithm to Salsa20.
A new type of malware, dubbed BabaYaga has been discovered by security researchers. This is a self-updating malware that accesses a URL on a command-and-control server and downloads the latest version of itself. The malware has the capabilities of installing and upgrading WordPress to ensure that the affiliate websites are fully functional.
Google has released July 2018's Android Security Patch which addresses a total of 70 vulnerabilities discovered across several core components, Pixel and Nexus devices. Security flaws that affect various Qualcomm components have also been addressed in the July patch release. Users can install updates via OTA (Over-the-Air) updates.
Flaws in Siemens Central Plant Clocks
A total of six critical vulnerabilities were discovered by security researchers in Siemens’ SICLOCK central plant clocks. SICLOCK TC100 and SICLOCK TC400 are affected by these flaws. Even though firmware updates haven't been released by Siemens yet, these flaws can be avoided by the installation of redundant time sources and implementation of plausibility checks.
Vulnerabilities in Thunderbird fixed
Mozilla has released a security update to patch multiple vulnerabilities in Thunderbird. These flaws allow unauthorized users to take control of an affected system. Users and administrators are encouraged to apply the necessary update for Thunderbird 52.9.
Posted on: July 05, 2018
Get the Daily Threat Briefing delivered to your email!
More from Cyware
Stay updated on the security threat landscape and technology innovations at Cyware with our threat intelligence briefings and blogs.
Explore Industry Briefs
Cyware for Enterprise
Adopt next-gen security with threat intelligence analysis, security automation...
Cyware for ISACs/ISAOs
Anticipate, prevent, and respond to threats through bi-directional threat in...