LAPSUS$ just asked NVIDIA to "COMPLETELY OPEN-SOURCE (and distribute under a foss license) their GPU drivers for Windows, macOS and Linux" until Friday.
More info on what happened before this:
bleepingcomputer.com/news/security/…
1. Juniper installs NSA backdoor in NetScreen devices in 2008
2. Chinese-backed hacking group APT5 hijacks NSA's backdoor in 2012 & drops a separate backdoor in 2014
3. Juniper fails to understand the significance of the 2012 and 2014 breaches
bloomberg.com/news/features/…
Mandiant says it's looking into Lockbit ransomware gang's claims:
“Mandiant is aware of these LockBit-associated claims. At this point, we do not have any evidence to support their claims. We will continue to monitor the situation as it develops.”
Cisco says it won’t fix a zero-day vulnerability in end-of-life VPN routers allowing unauthenticated, remote attackers to execute commands with root-level privileges.
Affected models: Cisco Small Business RV110W, RV130, RV130W, and RV215W routers.
The FIN7 hacking group has created an automated system called "Checkmarks" to breach corporate networks by exploiting unpatched Microsoft Exchange servers.
The attack platform has already been used to breach over 8,000 companies, primarily in the U.S.
bleepingcomputer.com/news/security/…
Microsoft has fixed a zero-day vulnerability exploited to bypass the Windows SmartScreen security feature to deliver Magniber ransomware and Qbot malware.
bleepingcomputer.com/news/security/…
Mystery solved, Microsoft is tracking:
- HermeticWiper AND HermeticWizard as Foxblade
- HermeticRansom as SonicVote
- IsaacWiper as Lasainraw
msrc-blog.microsoft.com/2022/02/28/ana…