SECURITY WARNINGS & Notices - Please post them here

[Asyn]

Convincing Microsoft phishing uses fake Office 365 spam alerts
https://www.bleepingcomputer.com/news/security/convincing-microsoft-phishing-uses-fake-office-365-spam-alerts/

[Asyn]

Emotet now drops Cobalt Strike, fast forwards ransomware attacks
https://www.bleepingcomputer.com/news/security/emotet-now-drops-cobalt-strike-fast-forwards-ransomware-attacks/

[bob3160]

Emotet now drops Cobalt Strike, fast forwards ransomware attacks
Emotet now drops Cobalt Strike, fast forwards ransomware attacks

Here's the link.
https://www.bleepingcomputer.com/news/security/emotet-now-drops-cobalt-strike-fast-forwards-ransomware-attacks/

[Asyn]

Emotet now drops Cobalt Strike, fast forwards ransomware attacks
Emotet now drops Cobalt Strike, fast forwards ransomware attacks

Here's the link.
https://www.bleepingcomputer.com/news/security/emotet-now-drops-cobalt-strike-fast-forwards-ransomware-attacks/

Oops, thanks Bob.

[bob3160]

Has the surveillance technology industry
found another powerful ally?

https://youtu.be/6hVf21-czow
There is always a fine balance between spying and/or protection
when it comes to surveillance.
Thanks to Joe Bosso for his excellent article on this topic.
https://blog.avast.com/author/joe-bosso

[Asyn]

Massive attack against 1.6 million WordPress sites underway
https://www.bleepingcomputer.com/news/security/massive-attack-against-16-million-wordpress-sites-underway/

[bob3160]

Weekly Security News Roundup w/e 12-10-2021

https://youtu.be/MhY_yLGpzIY
Security-related news thanks mostly to Avast Software. I'm just a messenger.
They do most of the challenging work and research. https://www.avast.com/en-us/index#pc

[Asyn]

New zero-day exploit for Log4j Java library is an enterprise nightmare
https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html
https://www.lunasec.io/docs/blog/log4j-zero-day/

[bob3160]

New zero-day exploit for Log4j Java library is an enterprise nightmare
https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html
https://www.lunasec.io/docs/blog/log4j-zero-day/

It's already been patched.
As always, you need to update to be safe.
Update - Update - Update

[Asyn]

New zero-day exploit for Log4j Java library is an enterprise nightmare
https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html
https://www.lunasec.io/docs/blog/log4j-zero-day/

It's already been patched.
As always, you need to update to be safe.
Update - Update - Update

Researchers release 'vaccine' for critical Log4Shell vulnerability
https://www.bleepingcomputer.com/news/security/researchers-release-vaccine-for-critical-log4shell-vulnerability/
http://github.com/Cybereason/Logout4Shell

[Tom654]

Is the Avast Business Hub also affected from Log4j problem?

[Asyn]

New zero-day exploit for Log4j Java library is an enterprise nightmare
https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html
https://www.lunasec.io/docs/blog/log4j-zero-day/

It's already been patched.
As always, you need to update to be safe.
Update - Update - Update

Researchers release 'vaccine' for critical Log4Shell vulnerability
https://www.bleepingcomputer.com/news/security/researchers-release-vaccine-for-critical-log4shell-vulnerability/
http://github.com/Cybereason/Logout4Shell

Hackers start pushing malware in worldwide Log4Shell attacks
https://www.bleepingcomputer.com/news/security/hackers-start-pushing-malware-in-worldwide-log4shell-attacks/

[bob3160]

New zero-day exploit for Log4j Java library is an enterprise nightmare
https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.cyberkendra.com/2021/12/worst-log4j-rce-zeroday-dropped-on.html
https://www.lunasec.io/docs/blog/log4j-zero-day/

It's already been patched.
As always, you need to update to be safe.
Update - Update - Update

Researchers release 'vaccine' for critical Log4Shell vulnerability
https://www.bleepingcomputer.com/news/security/researchers-release-vaccine-for-critical-log4shell-vulnerability/
http://github.com/Cybereason/Logout4Shell

Hackers start pushing malware in worldwide Log4Shell attacks
https://www.bleepingcomputer.com/news/security/hackers-start-pushing-malware-in-worldwide-log4shell-attacks/

Most infections can be directly attributed to neglect.
They neglected to update the system with the latest available security patches and the system got hacked.
No different here.

[polonus]

Botnets like Mirai now come with Log4j aboard.
Re: -https://mvnrepository.com/artifact/net.mamoe/mirai-logging-log4j2
Made that link non-clickable because it has repositories (pol).

Re: https://urlhaus.abuse.ch/browse.php?search=mirai+  (already forced offline).

polonus

[bob3160]

What is Log4j and Do You Need to Worry About it?

https://youtu.be/b2EpVYWZQLY
A new vulnerability called Log4j has security teams scrambling worldwide.
Here's what you need to do - and what you don't need to do - about it.
Thanks to Christopher Budd for his excellent article on this topic.
https://blog.avast.com/author/christopher-budd
Details on this vulnerability are described here:
https://blog.cloudflare.com/inside-the-log4j2-vulnerability-cve-2021-44228/