Welcome to the Secjuice Squeeze, a curated selection of interesting security articles and infosec news that you may have missed, lovingly curated for you every week. This week's volume was curated by Secjuice writers Sinwindie, Prasanna, Miguel Calles, Muhammad Luqman.
US charges Russian hackers behind NotPetya, KillDisk, OlympicDestroyer attacks
The US Department of Justice has unsealed today charges against six GRU officers believed to be members of Sandworm, one of today's most advanced state-sponsored hacking groups.
GravityRAT Comes Back to Earth with Android, macOS Spyware
The espionage tool masquerades as legitimate applications and robs victims blind of their data.
Mysterious 'Robin Hood' hackers donating stolen money
Experts and charities are puzzled by hackers who've started donating stolen money.
Activists Turn Facial Recognition Tools Against the Police
“We’re now approaching the technological threshold where the little guys can do it to the big guys,” one researcher said.
Dutch Ethical Hacker Logs into Trump’s Twitter Account
Last week a Dutch security researcher succeeded in logging into the Twitter account of the American President Donald Trump.
Bug Parade: NSA Warns on Cresting China-Backed Cyberattacks
The Feds have published a Top 25 exploits list, rife with big names like BlueKeep, Zerologon and other notorious security vulnerabilities.
A massive spam attack is ruining public 'Among Us' games
Among Us is struggling to contain a spam attack that is affecting most of its community.
RIAA blitz takes down 18 GitHub projects used for downloading YouTube videos
Main target of the takedown was the youtube-dl project, a Python library that had amassed more than 72k stars on GitHub and was used in many YouTube video ripping tools and services.
Botnet Infects Hundreds of Thousands of Websites
KashmirBlack has been targeting popular content management systems, such as WordPress, Joomla, and Drupal, and using Dropbox and GitHub for communication to hide its presence.
NSA Reveals the Top 25 Vulnerabilities Exploited by Chinese Nation-State Hackers
Officials urge organizations to patch the vulnerabilities most commonly scanned for, and exploited by, Chinese attackers.