Malware & Threats

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks

Cisco, Featured, Malware & Threats, Vulnerabilities, Zero-Day /

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks 08/09/2023 at 17:31 By Ionut Arghire Cisco is warning of a zero-day vulnerability in Cisco ASA and FTD that can be exploited remotely, without authentication, in brute force attacks. The post Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks Read More »

US, UK Sanction More Members of Trickbot Russian Cybercrime Group 

cybercrime, Government, Malware & Threats, Russia, Sanctions, Trickbot /

US, UK Sanction More Members of Trickbot Russian Cybercrime Group  08/09/2023 at 13:33 By Eduard Kovacs The US and UK have announced sanctions against 11 more alleged members of the Russian cybercrime group Trickbot.  The post US, UK Sanction More Members of Trickbot Russian Cybercrime Group  appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

US, UK Sanction More Members of Trickbot Russian Cybercrime Group  Read More »

US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities 

CISA, Cyberwarfare, Malware & Threats /

US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities  08/09/2023 at 13:33 By Ionut Arghire APTs exploited vulnerabilities in Zoho ManageEngine and Fortinet VPNs to hack an aerospace organization in early January 2023. The post US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities  Read More »

Apple Patches Actively Exploited iOS, macOS Zero-Days

apple, Citizen Lab, CVE-2023-41061, CVE-2023-41064, Malware & Threats, Mobile & Wireless, Nation-State, Vulnerabilities /

Apple Patches Actively Exploited iOS, macOS Zero-Days 07/09/2023 at 23:31 By Ryan Naraine Apple pushes out an urgent point-update to its flagship iOS and macOS platforms to fix a pair of security defects being exploited in the wild. The post Apple Patches Actively Exploited iOS, macOS Zero-Days appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Apple Patches Actively Exploited iOS, macOS Zero-Days Read More »

Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers

Google TAG, Lazarus, Malware & Threats, Nation-State, North Korea, Vulnerabilities /

Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers 07/09/2023 at 23:31 By Ryan Naraine Google again catches a North Korean APT actor targeting security researchers with zero-days and rigged software tools. The post Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers Read More »

‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign

Mac malware, Malware & Threats /

‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign 07/09/2023 at 17:48 By Eduard Kovacs A malware named Atomic macOS Stealer (AMOS) has been delivered to users via a malvertising campaign.  The post ‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign Read More »

Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs

Malware & Threats /

Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs 05/09/2023 at 13:17 By Ionut Arghire Malicious packages uploaded to PyPI, NPM, and Ruby repositories are targeting macOS users with information stealing malware. The post Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs Read More »

Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer

Malware, Malware & Threats, source code /

Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer 01/09/2023 at 14:04 By Ionut Arghire Cisco has observed multiple threat actors adopting the SapphireStealer information stealer after its source code was released on GitHub. The post Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer Read More »

Industry Reactions to Qakbot Botnet Disruption: Feedback Friday

Feedback Friday, Malware & Threats, Qakbot, takedown, Tracking & Law Enforcement /

Industry Reactions to Qakbot Botnet Disruption: Feedback Friday 01/09/2023 at 14:04 By Eduard Kovacs Industry professionals comment on the law enforcement operation targeting the Qakbot botnet and its implications. The post Industry Reactions to Qakbot Botnet Disruption: Feedback Friday appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Industry Reactions to Qakbot Botnet Disruption: Feedback Friday Read More »

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner

exploited, Malware, Malware & Threats /

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner 30/08/2023 at 14:17 By Eduard Kovacs The DreamBus botnet has resurfaced and it has been exploiting a recently patched Apache RocketMQ vulnerability to deliver a Monero miner. The post DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner Read More »

Operation ‘Duck Hunt’: Qakbot Malware Disrupted, $8.6 Million in Cryptocurrency Seized

botnet, FBI, Fraud & Identity Theft, Justice Department, Malware & Threats, Qakbot, Qbot, Ransomware /

Operation ‘Duck Hunt’: Qakbot Malware Disrupted, $8.6 Million in Cryptocurrency Seized 30/08/2023 at 00:03 By Ryan Naraine U.S. law enforcement announce the disruption of the notorious Qakbot cybercrime operation and the release of an auto-disinfection tool to 700,000 infected machines. The post Operation ‘Duck Hunt’: Qakbot Malware Disrupted, $8.6 Million in Cryptocurrency Seized appeared first

React to this headline:

Loading spinner

Operation ‘Duck Hunt’: Qakbot Malware Disrupted, $8.6 Million in Cryptocurrency Seized Read More »

VMware Patches Major Security Flaws in Network Monitoring Product

CISA KEV, Malware & Threats, Network Security, VMWare, VMware aria Operations for Logs, Vulnerabilities /

VMware Patches Major Security Flaws in Network Monitoring Product 29/08/2023 at 23:02 By Ryan Naraine VWware patches critical flaws that allow hackers to bypass SSH authentication and gain access to the Aria Operations for Networks command line interface. The post VMware Patches Major Security Flaws in Network Monitoring Product appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

VMware Patches Major Security Flaws in Network Monitoring Product Read More »

New ‘MMRat’ Android Trojan Targeting Users in Southeast Asia

Android trojan, Malware & Threats, Mobile & Wireless /

New ‘MMRat’ Android Trojan Targeting Users in Southeast Asia 29/08/2023 at 21:03 By Ionut Arghire The newly identified MMRat Android trojan has been targeting users in Southeast Asia to remotely control devices and perform bank fraud. The post New ‘MMRat’ Android Trojan Targeting Users in Southeast Asia appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

New ‘MMRat’ Android Trojan Targeting Users in Southeast Asia Read More »

Signs of Malware Attack Targeting Rust Developers Found on Crates.io

Application Security, Malware & Threats /

Signs of Malware Attack Targeting Rust Developers Found on Crates.io 28/08/2023 at 17:16 By Eduard Kovacs The Crates.io Rust package registry was targeted in preparation of a malware attack aimed at developers, according to Phylum. The post Signs of Malware Attack Targeting Rust Developers Found on Crates.io appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Signs of Malware Attack Targeting Rust Developers Found on Crates.io Read More »

3 Malware Loaders Detected in 80% of Attacks: Security Firm

Malware & Threats /

3 Malware Loaders Detected in 80% of Attacks: Security Firm 28/08/2023 at 15:46 By Ionut Arghire QakBot, SocGholish, and Raspberry Robin are the three most popular malware loaders, accounting for 80% of the observed incidents. The post 3 Malware Loaders Detected in 80% of Attacks: Security Firm appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

3 Malware Loaders Detected in 80% of Attacks: Security Firm Read More »

Chinese-backed APT ‘Flax Typhoon’ Hacks Taiwan with Minimal Malware Footprint

China, Flax Typhoon, LOLbins, Malware & Threats, Nation-State, Threat Intelligence /

Chinese-backed APT ‘Flax Typhoon’ Hacks Taiwan with Minimal Malware Footprint 24/08/2023 at 23:34 By Ryan Naraine Microsoft warns that Chinese spies are hacking into Taiwanese organizations with minimal use of malware and by abusing legitimate software. The post Chinese-backed APT ‘Flax Typhoon’ Hacks Taiwan with Minimal Malware Footprint appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Chinese-backed APT ‘Flax Typhoon’ Hacks Taiwan with Minimal Malware Footprint Read More »

Mysterious Malware Uses Wi-Fi Scanning to Get Location of Infected Device

Malware, Malware & Threats, Wi-Fi /

Mysterious Malware Uses Wi-Fi Scanning to Get Location of Infected Device 24/08/2023 at 18:31 By Eduard Kovacs Mysterious Whiffy Recon malware scans for nearby Wi-Fi access points to obtain the location of the infected device. The post Mysterious Malware Uses Wi-Fi Scanning to Get Location of Infected Device appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Mysterious Malware Uses Wi-Fi Scanning to Get Location of Infected Device Read More »

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective

Barracuda, exploited, FBI, Malware & Threats /

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective 24/08/2023 at 17:06 By Ionut Arghire The FBI says that the patches Barracuda released in May for an exploited ESG zero-day vulnerability (CVE-2023-2868) were not effective. The post FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective Read More »

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day 

cybercrime, exploited, Malware & Threats, WinRAR, Zero-Day /

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  24/08/2023 at 14:21 By Eduard Kovacs A financially motivated cybercrime group has exploited a WinRAR zero-day to deliver malware to traders and steal their money. The post Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  Read More »

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability

exploited, Malware & Threats, Openfire, Vulnerabilities /

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability 23/08/2023 at 17:19 By Ionut Arghire More than 3,000 Openfire servers are not patched against a recent vulnerability and are exposed to attacks employing a new exploit. The post 3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability Read More »

Scroll to Top