Dexphot Malware

Microsoft security engineers detailed a new malware strain that has been infecting Windows computers since October 2018 to hijack their resources to mine cryptocurrency and generate revenue for the attackers.

Named Dexphot, this malware reached its peak in mid-June this year, when its botnet reached almost 80,000 infected computers.

Source: ZDNet

How do you protect yourself?

Proper security measures must be in place to defend against Dexphot Malware and similar threats. Having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from malware.

CVE 2019-19088

GitLab has released new security updates for GitLab Community Edition (CE) and Enterprise Edition (EE).

Improper parameter sanitization for Maven package registry could lead to privilege escalation and remote code execution vulnerabilities under certain conditions.

Source: GitLab

How do you protect yourself?

Update to the new versions (12.5.2, 12.4.5, 12.3.8) once they are available.

DeathRansom Ransomware

A new ransomware called DeathRansom began with a rocky start, but has now resolved it’s issues and has begun to infect victims and encrypt their data.

When DeathRansom was first being distributed, it pretended to encrypt files, but researchers and users found that they could just remove the appended .wctc extension and the files would become usable again. Starting around November 20th, though, something changed.

Source: BleepingComputer

How do you protect yourself?

Proper security measures must be in place to defend against DeathRansom Ransomware and similar threats. Having proper up-to-date endpoint security provides a cross-generational blend of threat defense techniques to protect systems from malware.