Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Mon May 01 2023 12:44:36

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***

Mac malware-for-hire steals passwords and cryptocoins, sends "crime logs"
via Telegram

These malware peddlers are specifically going after Mac users. The hint's
in the name: "Atomic macOS Stealer", or AMOS for short.

***

Google wins court order to force ISPs to filter botnet traffic

CryptBot criminals are alleged to have plundered browser passwords, 
illicitly-snapped screenshots, cryptocurrency account data, and more.

***

S3 Ep132: Proof-of-concept lets anyone hack at will

When Doug says, "Happy Remote Code Execution Day, Duck"... it's irony.
For the avoidance of all doubt :-)

***

Google leaking 2FA secrets - researchers advise against new "account sync"
feature for now

You waited 13 years for this feature in Google Authenticator. Now 
researchers are advising you to wait a while longer, just in case...

***

PaperCut security vulnerabilities under active attack - vendor urges
customers to patch

If you have the product, but you haven't patched - well, the crooks
have now landed, so please don't delay. Do it today...

***
--- SBBSecho 3.20-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.