AuthorKelly Sheridan Staff Editor, Dark Reading

What’s in a Botnet? Researchers Spy on Geost Operators

The investigation of a major Android banking botnet yields insights about how cybercriminals structure and run an illicit business.

Microsoft Issues Advisory for Windows Hello for Business

An issue exists in Windows Hello for Business when public keys persist after a device is removed from Active Directory, if the AD exists, Microsoft reports.

TrickBot Expands in Japan Ahead of the Holidays

Data indicates TrickBot operators are modifying its modules and launching widespread campaigns around the world.

StrandHogg Vulnerability Affects All Versions of Android

The bug enables malware to pose as any legitimate Android app, letting attackers track messages, photos, credentials, and phone conversations.

Analysis of Jira Bug Stresses Impact of SSRF in Public Cloud

More than 3,100 Jira instances are still vulnerable to a server-side request forgery vulnerability patched in August.

The Implications of Last Week’s Exposure of 1.2B Records

Large sums of organized data, whether public or private, are worth their weight in gold to cybercriminals.

Researchers Explore How Mental Health Is Tracked Online

An analysis of popular mental health-related websites revealed a vast number of trackers, many of which are used for targeted advertising.

When You Know Too Much: Protecting Security Data from Security People

As security tools gather growing amounts of intelligence, experts explain how companies can protect this data from rogue insiders and other threats.

Attacker Mistake Botches Cyborg Ransomware Campaign

Cybercriminals attempted to install Cyborg ransomware on target machines by deceiving victims with a fraudulent Windows update.

Windows Hello for Business Opens Door to New Attack Vectors

Researchers exploring Windows Hello for Business found an Active Directory backdoor and other attack vectors that could lead to privilege escalation.