Malware & Threats

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections

bootkit, firmware, Malware & Threats, NSA, UEFI, Vulnerabilities /

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections 23/06/2023 at 20:58 By Ionut Arghire The National Security Agency (NSA) has released mitigation guidance to help organizations stave off BlackLotus UEFI bootkit infections. The post NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed […]

React to this headline:

Loading spinner

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections Read More »

China-Linked APT15 Targets Foreign Ministries With ‘Graphican’ Backdoor

APT15, China, graphican, Malware & Threats, Nation-State /

China-Linked APT15 Targets Foreign Ministries With ‘Graphican’ Backdoor 22/06/2023 at 18:46 By Ionut Arghire A Chinese hacking group flagged as APT15 is targeting foreign affairs ministries in the Americas with a new backdoor named Graphican. The post China-Linked APT15 Targets Foreign Ministries With ‘Graphican’ Backdoor appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

China-Linked APT15 Targets Foreign Ministries With ‘Graphican’ Backdoor Read More »

VMware Confirms Live Exploits Hitting Just-Patched Security Flaw

Aria Operations for Networks, Malware & Threats, Network Security, virtualization, VMWare, Vulnerabilities /

VMware Confirms Live Exploits Hitting Just-Patched Security Flaw 21/06/2023 at 03:16 By Ryan Naraine VMware updates a critical-level bulletin: “VMware has confirmed that exploitation of CVE-2023-20887 has occurred in the wild.” The post VMware Confirms Live Exploits Hitting Just-Patched Security Flaw appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

VMware Confirms Live Exploits Hitting Just-Patched Security Flaw Read More »

New ‘RDStealer’ Malware Targets RDP Connections

Bitdefender, Malware & Threats, Nation-State, RDP, RDStealer /

New ‘RDStealer’ Malware Targets RDP Connections 20/06/2023 at 18:20 By Ionut Arghire Bitdefender finds new malware capable of monitoring incoming RDP connections and infect the connecting clients that have client drive mapping enabled. The post New ‘RDStealer’ Malware Targets RDP Connections appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

New ‘RDStealer’ Malware Targets RDP Connections Read More »

Russian Hackers Using USB-Spreading Malware in Attacks on Ukrainian Government, Military

Malware & Threats, Russia, Ukraine, USB /

Russian Hackers Using USB-Spreading Malware in Attacks on Ukrainian Government, Military 16/06/2023 at 16:28 By Ionut Arghire Russia-linked hacking group Gamaredon is infecting USB drives for lateral movement within compromised Ukrainian networks. The post Russian Hackers Using USB-Spreading Malware in Attacks on Ukrainian Government, Military appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Russian Hackers Using USB-Spreading Malware in Attacks on Ukrainian Government, Military Read More »

In Other News: Linux Kernel Exploits, Update on BEC Losses, Cybersecurity Awareness Act

Artificial Intelligence, cybercrime, Malware & Threats /

In Other News: Linux Kernel Exploits, Update on BEC Losses, Cybersecurity Awareness Act 16/06/2023 at 16:28 By SecurityWeek News Cybersecurity news that you may have missed this week: Bug bounties for Linux kernel exploits, Cybersecurity Awareness Act, FBI data on BEC losses.  The post In Other News: Linux Kernel Exploits, Update on BEC Losses, Cybersecurity

React to this headline:

Loading spinner

In Other News: Linux Kernel Exploits, Update on BEC Losses, Cybersecurity Awareness Act Read More »

CosmicEnergy ICS Malware Poses No Immediate Threat, but Should Not Be Ignored

CosmicEnergy, ICS, ICS malware, ICS/OT, Malware & Threats, OT /

CosmicEnergy ICS Malware Poses No Immediate Threat, but Should Not Be Ignored 13/06/2023 at 19:21 By Eduard Kovacs The Russia-linked ICS malware named CosmicEnergy does not pose a direct threat to OT systems as it contains errors and lacks maturity. The post CosmicEnergy ICS Malware Poses No Immediate Threat, but Should Not Be Ignored appeared

React to this headline:

Loading spinner

CosmicEnergy ICS Malware Poses No Immediate Threat, but Should Not Be Ignored Read More »

Barracuda Urges Customers to Replace Hacked Email Security Appliances

Barracuda, Malware & Threats, Network Security /

Barracuda Urges Customers to Replace Hacked Email Security Appliances 08/06/2023 at 12:02 By Eduard Kovacs Barracuda Networks is telling customers to immediately replace hacked ESG email security appliances regardless of the patches they installed. The post Barracuda Urges Customers to Replace Hacked Email Security Appliances appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Barracuda Urges Customers to Replace Hacked Email Security Appliances Read More »

Dozens of Malicious Extensions Found in Chrome Web Store

Chrome, Malware & Threats /

Dozens of Malicious Extensions Found in Chrome Web Store 05/06/2023 at 21:47 By Ionut Arghire Security researchers have identified over 30 malicious extensions with millions of installs in the Chrome web store. The post Dozens of Malicious Extensions Found in Chrome Web Store appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Dozens of Malicious Extensions Found in Chrome Web Store Read More »

In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack 

Malware & Threats, news roundup, Tracking & Law Enforcement, Vulnerabilities /

In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack  03/06/2023 at 14:33 By Eduard Kovacs Cybersecurity news that you may have missed this week: the spyware used by various governments, new vulnerabilities, industrial security products, and Linux router attacks. The post In Other News: Government Use of Spyware, New Industrial

React to this headline:

Loading spinner

In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack  Read More »

Russia Blames US Intelligence for iOS Zero-Click Attacks

apple, Cyberwarfare, exploit, Featured, iOS, Malware & Threats, Russia /

Russia Blames US Intelligence for iOS Zero-Click Attacks 01/06/2023 at 17:48 By Eduard Kovacs Kaspersky said its corporate network has been targeted with a zero-click iOS exploit, just as Russia’s FSB said iPhones have been targeted by US intelligence. The post Russia Blames US Intelligence for iOS Zero-Click Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Russia Blames US Intelligence for iOS Zero-Click Attacks Read More »

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

backdoor, Endpoint Security, Featured, Gigabyte, Malware & Threats /

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards 31/05/2023 at 18:34 By Eduard Kovacs A backdoor feature found in hundreds of Gigabyte motherboard models can pose a significant supply chain risk to organizations. The post Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards Read More »

Spyware Found in Google Play Apps With Over 420 Million Downloads

Android, Android trojan, Malware & Threats, Mobile & Wireless /

Spyware Found in Google Play Apps With Over 420 Million Downloads 31/05/2023 at 15:29 By Ionut Arghire Security researchers have discovered spyware code in 101 Android applications that had over 421 million downloads in Google Play. The post Spyware Found in Google Play Apps With Over 420 Million Downloads appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Spyware Found in Google Play Apps With Over 420 Million Downloads Read More »

Android App With 50,000 Downloads in Google Play Turned Into Spyware via Update

Android trojan, Malware & Threats /

Android App With 50,000 Downloads in Google Play Turned Into Spyware via Update 24/05/2023 at 15:51 By Ionut Arghire The AhRat trojan was injected in a screen recording application that had amassed more than 50,000 downloads via Google Play. The post Android App With 50,000 Downloads in Google Play Turned Into Spyware via Update appeared

React to this headline:

Loading spinner

Android App With 50,000 Downloads in Google Play Turned Into Spyware via Update Read More »

Virtual Event Today: Threat Detection and Incident Response Summit

Featured, Malware & Threats, Threat Intelligence, Training & Awareness /

Virtual Event Today: Threat Detection and Incident Response Summit 24/05/2023 at 11:16 By Mike Lennon Join thousands of attendees as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack. (Register Now) The post Virtual Event Today: Threat Detection and Incident Response Summit appeared first

React to this headline:

Loading spinner

Virtual Event Today: Threat Detection and Incident Response Summit Read More »

Iranian Hackers Using New Windows Kernel Driver in Attacks

Malware & Threats /

Iranian Hackers Using New Windows Kernel Driver in Attacks 23/05/2023 at 17:49 By Ionut Arghire Iranian threat actors use a Windows kernel driver called ‘Wintapix’ in attacks against Middle East targets. The post Iranian Hackers Using New Windows Kernel Driver in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Iranian Hackers Using New Windows Kernel Driver in Attacks Read More »

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware

Malware, Malware & Threats, Mobile & Wireless, smartphone /

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware 18/05/2023 at 15:30 By Eduard Kovacs A threat actor tracked as Lemon Group has control over millions of smartphones distributed worldwide thanks to preinstalled Guerrilla malware. The post Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Millions of Smartphones Distributed Worldwide With Preinstalled ‘Guerrilla’ Malware Read More »

1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability

Malware & Threats, Vulnerabilities /

1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability 12/05/2023 at 12:25 By Ionut Arghire Exploitation of a critical vulnerability in the Essential Addons for Elementor WordPress plugin started immediately after a patch was released. The post 1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability Read More »

AndoryuBot DDoS Botnet Exploiting Ruckus AP Vulnerability

cybercrime, Malware & Threats /

AndoryuBot DDoS Botnet Exploiting Ruckus AP Vulnerability 09/05/2023 at 13:14 By Eduard Kovacs A DDoS botnet named AndoryuBot has been seen exploiting CVE-2023-25717, a recent remote code execution vulnerability affecting Ruckus access points. The post AndoryuBot DDoS Botnet Exploiting Ruckus AP Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

AndoryuBot DDoS Botnet Exploiting Ruckus AP Vulnerability Read More »

New Android Trojans Infected Many Devices in Asia via Google Play, Phishing

Android trojan, Malware & Threats, Mobile & Wireless /

New Android Trojans Infected Many Devices in Asia via Google Play, Phishing 07/05/2023 at 18:22 By Ionut Arghire The recently identified Fleckpe Android trojan has infected over 600,000 users in Southeast Asia via Google Play. The post New Android Trojans Infected Many Devices in Asia via Google Play, Phishing appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

New Android Trojans Infected Many Devices in Asia via Google Play, Phishing Read More »

Scroll to Top