News Clipping

[DNSPIONAGE] – FOCUS ON INTERNAL ACTIONS

Recently, we had an incident response involving the malware DNSPIONAGE. At CERT-OPMD, we thought it would be interesting to share our observations. Mainly, we could observe quietly common actions and tools as described in infography below. HOW DNSPIONAGE INFECTS TARGETS In this blogpost, we will not describe and analyse again...

Read more


Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages...

Read more


Hackers steal $4.2 million from cryptocurrency exchange Bitrue [mashable]

Singaporean cryptocurrency exchange Bitrue has been hacked, with the perps making off with roughly $4.2 million worth of cryptocoins XRP and ADA.  The incident happened at 1 a.m. GMT+8 on June 27, with the hacker exploiting a vulnerability in the company’s “Risk Control team’s 2nd review process to access the...

Read more


New Mac Malware Exploits GateKeeper Bypass Bug that Apple Left Unpatched [thehackernews]

Cybersecurity researchers from Intego are warning about possible active exploitation of an unpatched security vulnerability in Apple’s macOS Gatekeeper security feature details and PoC for which were publicly disclosed late last month. Intego team last week discovered four samples of new macOS malware on VirusTotal that leverage the GateKeeper bypass vulnerability to...

Read more


Page 3 of 10412345...102030...Last »