Additionally, Israeli police are using VPNs to distribute malware and Pegasus spyware
Natalie Silvanovich of Google’s Zero Vulnerability Search team discovered and reported two zero-click vulnerabilities in the video conferencing platform Zoom. Both of these vulnerabilities open the door for attackers to take control of the victim’s device and server without the victim having to do anything. “Many people think they are protected simply because they are careful when using their devices,” commented Avast security evangelist Luis Corrons.“This is the best example to show that anyone can be attacked without user-side interaction. That’s why it’s so important to update all of our applications to ensure that any known security holes are patched. ” To exploit the Zoom vulnerability, an attacker would have to target a Zoom account connected through Zoom contacts. After Silvanovich contacted the company, she said that Zoom was very responsive and supportive of her work. Zoom fixed the vulnerabilities and released a security update for its customers on November 24.For more on this story, see wired.
Europol shuts down VPNLab.net for cybercrime
A joint effort by 10 countries and Europol has taken down VPNLab.net’s international aid and abetting of cybercriminals.According to Europol Press release, virtual private network services “are used to support serious criminal activity, such as ransomware deployment and other cybercriminal activities.” Law enforcement authorities in all participating countries seized and compromised 15 servers worldwide hosting the VPN service in a coordinated manner. Visitors to the VPNLab website are currently receiving a notice that reads in part: “Law enforcement has now gained access to VPNLab.net servers and confiscated customer data stored on them. An investigation into the network’s customer data will be keep going.”
Apple and Google oppose antitrust legislation
As the U.S. House of Representatives Judiciary Committee reviews legislation aimed at relaxing big tech companies’ control over consumers, Apple and Google have spoken out against the bills, while smaller companies and startups have expressed support. The American Innovation and Choice Online Act would prevent big tech companies from favoring their own services over others, while the Open App Market Act would allow more competition from app stores. Apple and Google have complained that the new legislation will force them to compromise on safety and quality, while smaller companies claim that if Big Tech’s “gatekeeper” status loosens, they will eventually be able to compete on their own merits.For more information, see edge.
Report: Israeli police use Pegasus spyware on citizens
according to a exclusive report Israeli business newspaper Calcalist reported that Israeli police used NSO Group’s Pegasus Spyware Remotely hack into citizens’ phones. Those whose phones were hacked included mayors, former government employees, people close to senior politicians and leaders of political protests against former Prime Minister Benjamin Netanyahu, Calcalist said. Calcalist also claims that the hack was carried out without a search warrant or any court oversight. Israeli police dismissed claims of hacking as untrue, but did not deny the use of Pegasus as a tool.
Lazarus stole nearly $400 million in cryptocurrencies in 2021
North Korean cyber group Lazarus stole $395 million in cryptocurrency last year, $100 million more than the year before, according to an investigation by blockchain analysis firm Chainalysis. The value of cryptocurrencies has surged in the last year, with Bitcoin up 60% and Ethereum up 80%. Most of the stolen funds were in Ethereum, with Bitcoin accounting for about a fifth. Chainalysis said Lazarus stole cryptocurrencies during seven hacks of cryptocurrency exchanges and investment firms in 2021. North Korean hackers alone have made $1.5 billion in cryptocurrency thefts over the past five years.For more information, see Ars Technica.
take an examA Week’s “Must Reads” on the Avast Blog
The often exploited Remote Desktop Protocol (RDP) is in the news again. This time, it has a new attack vector, discovered by researchers and subsequently patched by Microsoft earlier this month.
