Subj : Sophos Virus News
To   : All
From : Daryl Stout
Date : Fri Apr 28 2023 12:41:43

Here is the latest information from the Naked Security Blog from Sophos.
You can go to nakedsecurity.sophos.com to read these. You can also sign
up to have these delivered to your email during the week.

***

Google wins court order to force ISPs to filter botnet traffic

CryptBot criminals are alleged to have plundered browser passwords, 
illicitly-snapped screenshots, cryptocurrency account data, and more.

***

S3 Ep132: Proof-of-concept lets anyone hack at will

When Doug says, "Happy Remote Code Execution Day, Duck"... it's irony.
For the avoidance of all doubt :-)

***

Google leaking 2FA secrets - researchers advise against new "account sync"
feature for now

You waited 13 years for this feature in Google Authenticator. Now 
researchers are advising you to wait a while longer, just in case...

***

PaperCut security vulnerabilities under active attack - vendor urges
customers to patch

If you have the product, but you haven't patched - well, the crooks
have now landed, so please don't delay. Do it today...

***

Double zero-day in Chrome and Edge - check your versions now!

Wouldn't it be handy if there were a single version number to check 
for in every Chromium-based browser, on every supported platform?

***
--- SBBSecho 3.20-Win32
 * Origin: The Thunderbolt BBS - Little Rock, Arkansas (454:1/33)

.