3721

Looking for vulnerabilities in MediaTek audio DSP
https://research.checkpoint.com/2021/looking-for-vulnerabilities-in-mediatek-audio-dsp/

3722

CronRAT malware hides behind February 31st
https://sansec.io/research/cronrat

3723

Babadeda Crypter targeting crypto, NFT, and DeFi communities
https://blog.morphisec.com/the-babadeda-crypter-targeting-crypto-nft-defi-communities

3724

TrickBot phishing checks screen resolution to evade researchers
https://www.bleepingcomputer.com/news/security/trickbot-phishing-checks-screen-resolution-to-evade-researchers/

3725

ScarCruft surveilling North Korean defectors and human rights activists
https://securelist.com/scarcruft-surveilling-north-korean-defectors-and-human-rights-activists/105074/

3726

Doctor Web discovered vulnerabilities in children’s smart watches
https://news.drweb.com/show/?i=14350&lng=en

3727

CoinHelper hides in repackaged installers of software, Windows 11, games, and antivirus
https://blog.avast.com/coinhelper-research-avast
https://decoded.avast.io/janrubin/toss-a-coin-to-your-helper/

3728

Deceive the Heavens to Cross the sea
https://threatfabric.com/blogs/deceive-the-heavens-to-cross-the-sea.html

3729

Russian internet watchdog announces ban of six more VPN products
https://www.bleepingcomputer.com/news/legal/russian-internet-watchdog-announces-ban-of-six-more-vpn-products/

3730

Yanluowang: Further Insights on New Ransomware Threat
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/yanluowang-ransomware-attacks-continue

3731

Banking Trojan Targets Banking Users in Malaysia
https://blog.cyble.com/2021/12/01/banking-trojan-targets-banking-users-in-malaysia/

3732

ProxyShell exploitation leads to BlackByte ransomware
https://redcanary.com/blog/blackbyte-ransomware/

3733

Nine WiFi routers used by millions were vulnerable to 226 flaws
https://www.bleepingcomputer.com/news/security/nine-wifi-routers-used-by-millions-were-vulnerable-to-226-flaws/
https://www.iot-inspector.com/blog/router-security-check-2021/

3734

Injection is the New Black: Novel RTF Template Inject Technique Poised for Widespread Adoption Beyond APT Actors
https://www.proofpoint.com/us/blog/threat-insight/injection-new-black-novel-rtf-template-inject-technique-poised-widespread

3735

Top 2021 threats include ransomware, pandemic-related scams, and fleeceware
https://blog.avast.com/2021-year-in-review-avast

3736

Malicious Excel XLL add-ins push RedLine password-stealing malware
https://www.bleepingcomputer.com/news/security/malicious-excel-xll-add-ins-push-redline-password-stealing-malware/

3737

Avast - 2021 Year in Review

https://d1ka0itfguscri.cloudfront.net/Lh/2021/12/07/17/28/crlibuV2ox3/preview.jpg

[b]https://youtu.be/VImww4Hf7Zo[/b]
A look back by Avast at the threat landscape of 2021
Credits for this article go to Grace Macej.
https://blog.avast.com/author/grace-macej

3738

APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus
https://unit42.paloaltonetworks.com/tiltedtemple-manageengine-servicedesk-plus/

3739

Tor’s main site blocked in Russia as censorship widens
https://www.bleepingcomputer.com/news/security/tor-s-main-site-blocked-in-russia-as-censorship-widens/
https://blog.torproject.org/tor-censorship-in-russia/

3740

NginRAT parasite targets Nginx
https://sansec.io/research/nginrat