Malware & Threats

Information Stealer Exploits Windows SmartScreen Bypass

Malware, Malware & Threats /

Information Stealer Exploits Windows SmartScreen Bypass 2024-01-15 at 14:46 By Ionut Arghire Attackers exploit a recent Windows SmartScreen bypass vulnerability to deploy the Phemedrone information stealer. The post Information Stealer Exploits Windows SmartScreen Bypass appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Information Stealer Exploits Windows SmartScreen Bypass Read More »

Cloud Server Abuse Leads to Huge Spike in Botnet Scanning

botnet, Malware & Threats /

Cloud Server Abuse Leads to Huge Spike in Botnet Scanning 2024-01-15 at 13:18 By Eduard Kovacs Netscout sees over one million IPs conducting reconnaissance scanning on the web due to increase in use of cheap or free cloud servers. The post Cloud Server Abuse Leads to Huge Spike in Botnet Scanning appeared first on SecurityWeek.

React to this headline:

Loading spinner

Cloud Server Abuse Leads to Huge Spike in Botnet Scanning Read More »

Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout

China, espionage, Ivanti, Malware & Threats, Zero-Day /

Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout 2024-01-12 at 13:16 By Eduard Kovacs Ivanti zero-day vulnerabilities dubbed ConnectAround could impact thousands of systems and Chinese cyberspies are preparing for patch release. The post Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout Read More »

CISA Urges Patching of Exploited SharePoint Server Vulnerability

exploited, Malware & Threats, SharePoint /

CISA Urges Patching of Exploited SharePoint Server Vulnerability 2024-01-11 at 14:32 By Ionut Arghire CISA has added a critical Microsoft SharePoint Server flaw (CVE-2023-29357) to its Known Exploited Vulnerabilities catalog. The post CISA Urges Patching of Exploited SharePoint Server Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

CISA Urges Patching of Exploited SharePoint Server Vulnerability Read More »

Dutch Engineer Used Water Pump to Get Billion-Dollar Stuxnet Malware Into Iranian Nuclear Facility: Report

Malware & Threats, Stuxnet /

Dutch Engineer Used Water Pump to Get Billion-Dollar Stuxnet Malware Into Iranian Nuclear Facility: Report 2024-01-10 at 14:17 By Eduard Kovacs An engineer recruited by intelligence services used a water pump to deliver Stuxnet, which reportedly cost $1-2 billion to develop. The post Dutch Engineer Used Water Pump to Get Billion-Dollar Stuxnet Malware Into Iranian

React to this headline:

Loading spinner

Dutch Engineer Used Water Pump to Get Billion-Dollar Stuxnet Malware Into Iranian Nuclear Facility: Report Read More »

Adobe Patches Code Execution Flaws in Substance 3D Stager

Adobe, Malware & Threats, memory corruption, Patch Tuesday, Substance 3D Stager, Vulnerabilities /

Adobe Patches Code Execution Flaws in Substance 3D Stager 2024-01-09 at 20:02 By Ryan Naraine Patch Tuesday: Adobe patches six security flaws in the Substance 3D Stager product and warned of code execution risks on Windows and macOS. The post Adobe Patches Code Execution Flaws in Substance 3D Stager appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Adobe Patches Code Execution Flaws in Substance 3D Stager Read More »

Turkish Hackers Target Microsoft SQL Servers in Americas, Europe

Malware & Threats, Ransomware, Uncategorized /

Turkish Hackers Target Microsoft SQL Servers in Americas, Europe 2024-01-09 at 18:32 By Ionut Arghire Researchers at Securonix warn that Turkish threat actors are targeting organizations in the Americas and Europe with ransomware campaigns. The post Turkish Hackers Target Microsoft SQL Servers in Americas, Europe appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Turkish Hackers Target Microsoft SQL Servers in Americas, Europe Read More »

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea

Mac malware, Malware & Threats, North Korea /

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea 2024-01-05 at 15:45 By Ionut Arghire SpectralBlur is a new macOS backdoor that shows similarities with North Korean hacking group’s KandyKorn malware. The post New ‘SpectralBlur’ macOS Backdoor Linked to North Korea appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

New ‘SpectralBlur’ macOS Backdoor Linked to North Korea Read More »

Several Infostealers Using Persistent Cookies to Hijack Google Accounts

Malware, Malware & Threats /

Several Infostealers Using Persistent Cookies to Hijack Google Accounts 2024-01-03 at 17:46 By Ionut Arghire A vulnerability in Google’s authentication process allows malware to restore cookies and hijack user sessions. The post Several Infostealers Using Persistent Cookies to Hijack Google Accounts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Several Infostealers Using Persistent Cookies to Hijack Google Accounts Read More »

21 New Mac Malware Families Emerged in 2023

Mac malware, Malware, Malware & Threats /

21 New Mac Malware Families Emerged in 2023 2024-01-03 at 14:46 By Eduard Kovacs A total of 21 new malware families targeting macOS systems were discovered in 2023, a 50% increase compared to 2022.  The post 21 New Mac Malware Families Emerged in 2023 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

21 New Mac Malware Families Emerged in 2023 Read More »

In Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone Passcode

Data Breaches, In Other News, Malware & Threats /

In Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone Passcode 2023-12-29 at 16:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Ubisoft investigating alleged hack, NASA releases security guidance, TikTok scares iPhone users.  The post In Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone Passcode appeared first

React to this headline:

Loading spinner

In Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone Passcode Read More »

Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ

Barracuda, China, Malware & Threats, Zero-Day /

Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ 2023-12-28 at 13:01 By Eduard Kovacs The new Barracuda ESG zero-day CVE-2023-7102 has been used by Chinese hackers to target organizations in the US and APJ region. The post Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ appeared first on SecurityWeek.

React to this headline:

Loading spinner

Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ Read More »

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day

Barracuda, email security, Featured, Malware & Threats, Zero-Day /

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day 2023-12-27 at 13:16 By Eduard Kovacs Chinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances. The post Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day Read More »

Chameleon Android Malware Can Bypass Biometric Security

Android, Malware & Threats, Mobile & Wireless /

Chameleon Android Malware Can Bypass Biometric Security 2023-12-22 at 20:02 By Ionut Arghire A variant of the Chameleon Android banking trojan features new bypass capabilities and has expanded its targeting area. The post Chameleon Android Malware Can Bypass Biometric Security appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Chameleon Android Malware Can Bypass Biometric Security Read More »

CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild

botnet, CISA, exploited, Malware & Threats, Mirai /

CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild 22/12/2023 at 14:46 By Eduard Kovacs CISA released ICS advisories for FXC router and QNAP NRV flaws and added them to its known exploited vulnerabilities catalog.  The post CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild appeared first on

React to this headline:

Loading spinner

CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild Read More »

NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains

Malware & Threats, NSA /

NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains 20/12/2023 at 18:32 By Ionut Arghire The National Security Agency has published a new yearly report detailing its cybersecurity efforts throughout 2023. The post NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains Read More »

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE

Akamai, Malware & Threats, Microsoft, Microsoft Outlook, Vulnerabilities, Zero-Day /

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE 19/12/2023 at 23:55 By Ionut Arghire Akamai researchers document more vulnerabilities and patch bypasses leading to zero-click remote code execution in Microsoft Outlook. The post Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE Read More »

Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies

APT29, espionage, Malware & Threats, Russia, supply chain, Supply Chain Security /

Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies 14/12/2023 at 14:35 By Ionut Arghire US, UK, and Poland warn of Russia-linked cyberespionage group’s broad exploitation of recent TeamCity vulnerability. The post Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies Read More »

Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle

Adobe, Application Security, Illustrator, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle 12/12/2023 at 23:47 By Ryan Naraine Adobe warned users on both Windows and macOS systems about exposure to code execution, memory leaks and denial-of-service security issues. The post Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Adobe Patches 207 Security Bugs in Mega Patch Tuesday Bundle Read More »

North Korean Hackers Developing Malware in Dlang Programming Language

Lazarus, Malware, Malware & Threats, North Korea /

North Korean Hackers Developing Malware in Dlang Programming Language 11/12/2023 at 18:16 By Ionut Arghire North Korean hackers have used Dlang-based malware in attacks against manufacturing, agriculture, and physical security organizations. The post North Korean Hackers Developing Malware in Dlang Programming Language appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

North Korean Hackers Developing Malware in Dlang Programming Language Read More »

Scroll to Top