Malware & Threats

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies

APT28, FBI, Forest Blizzard, KV Botnet, Malware & Threats, Nation-State /

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies 2024-02-15 at 21:46 By Ryan Naraine The US government says it has neutralized a network of hundreds of Ubiquiti Edge OS routers under the control of the Russia’s APT28 hackers. The post FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies appeared first on SecurityWeek. This […]

React to this headline:

Loading spinner

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies Read More »

Microsoft Catches APTs Using ChatGPT for Vuln Research, Malware Scripting

Artificial Intelligence, ChatGPT, LLMs, Malware & Threats, Microsoft, OpenAI /

Microsoft Catches APTs Using ChatGPT for Vuln Research, Malware Scripting 2024-02-14 at 22:02 By Ryan Naraine Microsoft threat hunters say foreign APTs are interacting with OpenAI’s ChatGPT to automate malicious vulnerability research, target reconnaissance and malware creation tasks. The post Microsoft Catches APTs Using ChatGPT for Vuln Research, Malware Scripting appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Microsoft Catches APTs Using ChatGPT for Vuln Research, Malware Scripting Read More »

Windows Zero-Day Exploited in Attacks on Financial Market Traders

Malware & Threats, Windows, Zero-Day /

Windows Zero-Day Exploited in Attacks on Financial Market Traders 2024-02-14 at 14:17 By Eduard Kovacs CVE-2024-21412, one of the security bypass zero-days fixed by Microsoft with Patch Tuesday updates, exploited by Water Hydra (DarkCasino). The post Windows Zero-Day Exploited in Attacks on Financial Market Traders appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Windows Zero-Day Exploited in Attacks on Financial Market Traders Read More »

Microsoft Confirms Windows Exploits Bypassing Security Features

CVE-2024-21412, CVE-2024-21413, CVE-2024-21451, Malware & Threats, Patch Tuesday, Vulnerabilities /

Microsoft Confirms Windows Exploits Bypassing Security Features 2024-02-13 at 22:01 By Ryan Naraine Patch Tuesday: Microsoft pushes a massive batch of security-themed updates and calls urgent attention to exploits bypassing security features. The post Microsoft Confirms Windows Exploits Bypassing Security Features appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Microsoft Confirms Windows Exploits Bypassing Security Features Read More »

Ivanti Vulnerability Exploited to Deliver New ‘DSLog’ Backdoor

backdoor, exploited, Ivanti, Malware & Threats /

Ivanti Vulnerability Exploited to Deliver New ‘DSLog’ Backdoor 2024-02-13 at 15:31 By Ionut Arghire Backdoor deployed using recent Ivanti VPN vulnerability enables command execution, web request and system log theft. The post Ivanti Vulnerability Exploited to Deliver New ‘DSLog’ Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Ivanti Vulnerability Exploited to Deliver New ‘DSLog’ Backdoor Read More »

Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive

ATT&CK, Featured, Malware & Threats, MITRE, Pincus, Ransomware /

Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive 2024-02-13 at 07:31 By Kevin Townsend A malware tactic dubbed ‘hunter-killer’ is growing, based on an analysis of more than 600,000 malware samples. This may become the standard approach for advanced attacks. The post Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive Read More »

New macOS Backdoor Linked to Prominent Ransomware Groups

Mac malware, Malware & Threats /

New macOS Backdoor Linked to Prominent Ransomware Groups 2024-02-09 at 16:47 By Ionut Arghire Written in Rust, the new RustDoor macOS backdoor appears linked to Black Basta and Alphv/BlackCat ransomware. The post New macOS Backdoor Linked to Prominent Ransomware Groups appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

New macOS Backdoor Linked to Prominent Ransomware Groups Read More »

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption

China, CISA, critical infrastructure, Malware & Threats, Nation-State, Volt Typhoon /

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption 2024-02-08 at 01:01 By Ryan Naraine New CISA alert includes technical mitigations to harden attack surfaces and instructions to hunt for the Chinese government-backed hackers. The post CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption Read More »

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks 

critical infrastructure, Iran, Israel, Malware & Threats, Nation-State, Unitronics /

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  2024-02-02 at 22:02 By Ryan Naraine The US government slaps sanctions against six Iranian government officials linked to cyberattacks against Israeli PLC vendor Unitronics. The post US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  Read More »

CISA Sets 48-hour Deadline for Removal of Insecure Ivanti Products

CISA KEV, Ivanti, Malware & Threats, VPN, Vulnerabilities, Zero-Day /

CISA Sets 48-hour Deadline for Removal of Insecure Ivanti Products 2024-02-01 at 19:01 By Ryan Naraine In an unprecedented move, CISA is demanding that federal agencies disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure products within 48 hours. The post CISA Sets 48-hour Deadline for Removal of Insecure Ivanti Products appeared first

React to this headline:

Loading spinner

CISA Sets 48-hour Deadline for Removal of Insecure Ivanti Products Read More »

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit

CISA KEV, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Featured, Ivanti, Malware & Threats, Vulnerabilities /

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit 2024-01-31 at 19:47 By Ryan Naraine Ivanti documents a brand-new zero-day and belatedly ships patches; Mandiant is reporting “broad exploitation activity.” The post After Delays, Ivanti Patches Zero-Days and Confirms New Exploit appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

After Delays, Ivanti Patches Zero-Days and Confirms New Exploit Read More »

Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet

botnet, exploited, Malware & Threats, Zero-Day /

Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet 2024-01-31 at 12:32 By Ionut Arghire Akamai flags six zero-day vulnerabilities in Hitron DVRs exploited to ensnare devices in the InfectedSlurs botnet. The post Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet Read More »

In Other News: Secure Use of AI, HHS Hacking, CISA Director Swatting

Artificial Intelligence, In Other News, Malware & Threats /

In Other News: Secure Use of AI, HHS Hacking, CISA Director Swatting 2024-01-26 at 16:47 By SecurityWeek News Noteworthy stories that might have slipped under the radar: guidance on secure use of AI, HHS grant money stolen by hackers, CISA director target of swatting.  The post In Other News: Secure Use of AI, HHS Hacking,

React to this headline:

Loading spinner

In Other News: Secure Use of AI, HHS Hacking, CISA Director Swatting Read More »

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware

Blackwood, China, espionage, Malware, Malware & Threats, Nation-State /

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware 2024-01-26 at 14:02 By Ionut Arghire The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan.  The post Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware Read More »

Apple Ships iOS 17.3, Warns of WebKit Zero-Day Exploitation

iOS 17.3, macOS Sonoma, Malware & Threats, Vulnerabilities, WebKit, Zero-Day /

Apple Ships iOS 17.3, Warns of WebKit Zero-Day Exploitation 2024-01-22 at 22:31 By Ryan Naraine Apple pushes out fresh versions of its iOS and macOS platforms to fix WebKit vulnerabilities being exploited as zero-day in the wild. The post Apple Ships iOS 17.3, Warns of WebKit Zero-Day Exploitation appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Apple Ships iOS 17.3, Warns of WebKit Zero-Day Exploitation Read More »

In Other News: WhatsApp Privacy Issue, Spying via Ambient Light Sensor, Bigpanzi Botnet

In Other News, Malware & Threats /

In Other News: WhatsApp Privacy Issue, Spying via Ambient Light Sensor, Bigpanzi Botnet 2024-01-20 at 14:02 By Eduard Kovacs Noteworthy stories that might have slipped under the radar: WhatsApp privacy issue remains unpatched, spying via tablet ambient light sensors, and the Bigpanzi botnet.  The post In Other News: WhatsApp Privacy Issue, Spying via Ambient Light

React to this headline:

Loading spinner

In Other News: WhatsApp Privacy Issue, Spying via Ambient Light Sensor, Bigpanzi Botnet Read More »

CISA Issues Emergency Directive on Ivanti Zero-Days

CISA, CVE-2023-46805, CVE-2024-21887, Ivanti, Malware & Threats, Volexity, Vulnerabilities /

CISA Issues Emergency Directive on Ivanti Zero-Days 2024-01-19 at 23:31 By Ryan Naraine The US government’s cybersecurity agency CISA ramps up the pressure on organizations to mitigate two exploited Ivanti VPN vulnerabilities. The post CISA Issues Emergency Directive on Ivanti Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

CISA Issues Emergency Directive on Ivanti Zero-Days Read More »

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

Iran, Malware & Threats, Microsoft, Mint Sandstorm, Nation-State /

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks 2024-01-17 at 20:31 By Ryan Naraine Microsoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks. The post Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks Read More »

US Gov Issues Warning for Androxgh0st Malware Attacks

Androxgh0st, CISA, CVE-2017-9841, CVE-2018-15133, Incident Response, Malware & Threats /

US Gov Issues Warning for Androxgh0st Malware Attacks 2024-01-17 at 18:46 By Ionut Arghire A joint advisory from CISA and the FBI warns about Androxgh0st malware attacks ensnaring devices in a botnet. The post US Gov Issues Warning for Androxgh0st Malware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

US Gov Issues Warning for Androxgh0st Malware Attacks Read More »

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins

exploited, Featured, Ivanti, Malware & Threats, Zero-Day /

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins 2024-01-16 at 12:46 By Eduard Kovacs The recently disclosed Ivanti VPN zero-days have been exploited to hack at least 1,700 devices, including government, telecoms, defense, and tech. The post Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins Read More »

Scroll to Top