Weekday Digest – 4/10/2022 (Sunday)

Information from Friday afternoon to Sunday afternoon.

News/Intelligence/IOCs Stories

  • Google Play Bitten by Sharkbot Info-stealer ‘AV Solution’ – LINK
  • Researchers Connect BlackCat Ransomware with Past BlackMatter Malware ActivityLINK
  • GitHub can now alert of supply-chain bugs in new dependencies – LINK
  • Microsoft: Windows 10 20H2 reaches end of service next month – LINK
  • BakerHostetler Launches 2022 Data Security Incident Response Report — Resilience And Perseverance – LINK
  • 15 Cybersecurity Measures for the Cloud Era – LINK
  • Trend says hackers have weaponized SpringShell to install Mirai malware – LINK
  • China-linked threat actors target Indian Power Grid organizations – LINK
  • NIST Patch Management Guides: What MSSPs, MSPs Need to Know – LINK
  • Microsoft: Windows Autopatch steals the ‘fun’ from Patch Tuesdays – LINK
  • New Android banking malware remotely takes control of your device – LINK
  • Anti-ransomware strategy – LINK

Russia/Ukraine War Related Stories

  • Microsoft Sinkholes Russian Hacking Group’s Domains Targeting Ukraine – LINK
  • Microsoft dogs Strontium domains to stop attacks on Ukraine – LINK
  • Finnish govt websites knocked down as Ukraine President addresses MPs – LINK
  • Hackers use Conti’s leaked ransomware to attack Russian companies – LINK
  • Facebook blocked Russia and Belarus threat actors’ activity against Ukraine – LINK

Vulnerability Related

  • Popular Ruby Asciidoc toolkit patched against critical vuln – get the update now! – (CVE-2022-24803) – LINK

New Breach Related Stories

  • Snap-on discloses data breach claimed by Conti ransomware gang – LINK
  • YouTube channels of Taylor Swift, Justin Bieber, Harry Styles, and other musicians compromised – LINK