2761

Registers as “Default Print Monitor”, but is a malicious downloader. Meet DePriMon
https://www.welivesecurity.com/2019/11/21/deprimon-default-print-monitor-malicious-downloader/

2762

Ginp - A malware patchwork borrowing from Anubis
https://www.threatfabric.com/blogs/ginp_a_malware_patchwork_borrowing_from_anubis.html

2763

Insights from one year of tracking a polymorphic threat
https://www.microsoft.com/security/blog/2019/11/26/insights-from-one-year-of-tracking-a-polymorphic-threat/

2764

Snapshot: Top 25 Most Dangerous Software Errors
https://www.dhs.gov/science-and-technology/news/2019/11/26/snapshot-top-25-most-dangerous-software-errors
https://cwe.mitre.org/top25/archive/2019/2019_cwe_top25.html

2765

Advanced Hacking Groups Keep Showing Up, Old Ones Evolve
https://www.bleepingcomputer.com/news/security/advanced-hacking-groups-keep-showing-up-old-ones-evolve/

2766

International crackdown on RAT spyware which takes total control of victims’ PCs
https://www.europol.europa.eu/newsroom/news/international-crackdown-rat-spyware-which-takes-total-control-of-victims’-pcs

2767

A decade of hacking: The most notable cyber-security events of the 2010s
https://www.zdnet.com/article/a-decade-of-hacking-the-most-notable-cyber-security-events-of-the-2010s/

2768

New Chrome Password Stealer Sends Stolen Data to a MongoDB Database
https://www.bleepingcomputer.com/news/security/new-chrome-password-stealer-sends-stolen-data-to-a-mongodb-database/

2769

The StrandHogg vulnerability
https://promon.co/security-news/strandhogg/

2770

Spear phishing campaigns—they’re sharper than you think
https://www.microsoft.com/security/blog/2019/12/02/spear-phishing-campaigns-sharper-than-you-think/

2771

30 506 internet domain names shut down for intellectual property infringement
https://www.europol.europa.eu/newsroom/news/30-506-internet-domain-names-shut-down-for-intellectual-property-infringement

2772

Lazarus Group Goes ‘Fileless’
https://objective-see.com/blog/blog_0x51.html

2773

Behind the One-Way Mirror: A Deep Dive Into the Technology of Corporate Surveillance
https://www.eff.org/wp/behind-the-one-way-mirror

2774

GhostDNS Exploit Kit Strikes Back
https://decoded.avast.io/simonamusilova/ghostdns-exploit-kit-strikes-back/

2775

Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774)
https://www.fireeye.com/blog/threat-research/2019/12/breaking-the-rules-tough-outlook-for-home-page-attacks.html

2776

How Social Media Companies are Failing to Combat Inauthentic Behaviour Online
https://www.stratcomcoe.org/how-social-media-companies-are-failing-combat-inauthentic-behaviour-online

2777

Snatch ransomware reboots PCs into Safe Mode to bypass protection
https://news.sophos.com/en-us/2019/12/09/snatch-ransomware-reboots-pcs-into-safe-mode-to-bypass-protection/

2778

The December 2019 Security Update Review
https://www.zerodayinitiative.com/blog/2019/12/10/the-december-2019-security-update-review

2779

Windows 0-day exploit CVE-2019-1458 used in Operation WizardOpium
https://securelist.com/windows-0-day-exploit-cve-2019-1458-used-in-operation-wizardopium/95432/

2780

Multi-stage downloader Trojan sLoad abuses BITS almost exclusively for malicious activities
https://www.microsoft.com/security/blog/2019/12/12/multi-stage-downloader-trojan-sload-abuses-bits-almost-exclusively-for-malicious-activities/