We’ve brought together this week’s most important news from the world of cybersecurity.

Experts talked about ending the activities of Conti hackers

Cyber ​​security experts announced the termination of the Conti group’s activities.

According to Advanced Intel experts, the Tor network admin panels that participants used to share and publish “news” on a website that leaked hacked companies’ data are now disabled.

Analysts also say that Conti members now work in smaller hacker groups.

Earlier, the US State Department offered $15 million for information about the operators of the Conti ransomware.

Roskomnadzor wanted to “ground” the Wikimedia Foundation

Roskomnadzor included the non-profit charity Wikimedia Foundation in the list of companies that must open a representative office in the Russian Federation and comply with the requirements of the so-called “landing” law.

The organization maintains the infrastructure to run a number of projects, including Wikipedia.

Lazarus attacked VMware servers via Log4Shell

North Korean-linked Lazarus hackers are using a notorious Log4Shell vulnerability to inject backdoors into VMware Horizon servers. Reported by Bleeping Computer.

Malware installed by hackers performs various spying operations, including taking screenshots, monitoring keyboard strokes, accessing files, and more.

In some cases, Lazarus injected stealth cryptocurrency miners into infected devices instead of spyware.

Work on new encryption standards in the United States announced

Bloomberg writes that the United States is developing new encryption standards aimed at combating attacks using quantum computing.

The National Institute of Standards and Technology (NIST) is holding a competition to update these encryption protocols. The administration of the President of the United States plans to apply the algorithms developed by NIST to all economic institutions of the country “by 2035, to the extent possible.”

The National Security Agency is partially involved in the development and ensures that there will be no backdoors in new encryption protocols.

Trend Micro Reveals Fraudulent Apps Targeting Cryptocurrency Users and Facebook Accounts on Google Play

Trend Micro has found more than 200 different types of apps on Google Play that are infected by the Facestealer spyware.

Steals Facebook user credentials via fake apps from Google Play.

Experts have also found more than 40 fake apps that allow you to make money from mining cryptocurrencies but are actually aimed at stealing passwords and seed phrases:

Its operators are not only trying to profit from their victims by tricking them into purchasing fake cryptocurrency mining cloud services, but also trying to steal private keys and other sensitive information.”

Delivery Club suffered a data breach

Delivery Club, the largest food and grocery delivery service in Russia, has reported a data breach. The company claims that it does not affect customers’ banking data.

The seller claims that its complete database contains 250 million rows, including names, phone numbers, shipping addresses, email and more.

Also on ForkLog:

What to read on the weekend?

Russian authorities continue to increase censorship and restrict citizens’ access to social networks and alternative sources of information. ForkLog tells how to read blocked resources.