Cybersecurity Weekly: SSL malware campaign, Intel vulnerability, PwnedLocker decrypted

Infosec_SamInfosec_Sam Security+, CCENT, ITIL Foundation, A+Madison, WIAdmin Posts: 527 Admin
A new malware campaign employs fake security certificate updates. An unfixable vulnerability in Intel chipsets allows hackers to obtain protected data. Decryption is now available for PwnedLocker ransomware. All this, and more, in this week’s edition of Cybersecurity Weekly.

1. Malware campaign employs fake security certificate updates

Scammers are using a new phishing technique to trick victims into installing a security certificate update that delivers malware. Visitors to infected websites are asked to install a software update because the security certificate expired. The first infections employed in these attacks date back to January 16 of this year.
Read more »

2. Vulnerability in Intel chipsets allows hackers to obtain protected data

Most Intel chipsets released in the past five years are affected by a vulnerability that can be exploited to obtain encrypted data and compromise data protection systems. According to security researchers, this is an unfixable vulnerability that affects the CSME boot ROM on most intel processors, except for Ice Point chips.
Read more »

3. Decryption now available for PwndLocker ransomware

Security researchers discovered a way to decrypt files encrypted by the new PwndLocker ransomware so victims can recover their files without paying any ransom. PwndLocker demanded ransoms ranging from $175,000 to over $660,000, depending on the size of the victim’s network.
Read more »


For more cybersecurity news stories like these, check out the blog »

Community Manager at Infosec!
Who we are | What we do
Sign In or Register to comment.