Malware & Threats

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected

exploit, iOS, Kaspersky, Malware & Threats, Operation Triangulation /

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected 24/10/2023 at 22:01 By Ionut Arghire Kaspersky analyzes the stealth techniques that were used in the ‘Operation Triangulation’ iOS zero-click attacks. The post Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View […]

Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected Read More »

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant

Cisco, Malware & Threats, Vulnerabilities, vulnerability, Zero-Day /

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant 24/10/2023 at 20:02 By Eduard Kovacs The number of Cisco devices hacked via recent zero-days remains high, but the attackers have updated their implant. The post Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant appeared first on

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant Read More »

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops

Cisco, Featured, Malware & Threats, Vulnerabilities, Zero-Day /

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops 23/10/2023 at 21:49 By Eduard Kovacs Cisco has found a second zero-day vulnerability that has been exploited in recent attacks as the number of hacked devices has started dropping. The post Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops appeared first

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops Read More »

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site

cybercrime, Europol, Malware & Threats, RagnarLocker, Ransomware /

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site 20/10/2023 at 18:31 By Ionut Arghire The RagnarLocker ransomware group’s dark web leak site has been seized in a coordinated law enforcement operation. The post Authorities Seize Control of RagnarLocker Ransomware Dark Web Site appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site Read More »

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000

Cisco, exploited, Malware & Threats, Vulnerabilities /

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 19/10/2023 at 14:01 By Eduard Kovacs The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US. The post Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 appeared first on SecurityWeek. This article is

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 Read More »

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw

China, CVE-2023-38831, cybercrime, Malware & Threats, Nation-State, Russia, Sandworm, Vulnerabilities, WinRAR /

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw 18/10/2023 at 20:55 By Ryan Naraine Google says it is still catching government-backed groups linked to China and Russia launching WinRAR exploits in targeted attacks. The post Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw appeared first on SecurityWeek. This article is an excerpt from

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw Read More »

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability

Cisco, Featured, Malware & Threats, Zero-Day /

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability 18/10/2023 at 14:01 By Eduard Kovacs Tens of thousands of Cisco devices have reportedly been hacked via the exploitation of the zero-day vulnerability CVE-2023-20198. The post Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability Read More »

Signal Pours Cold Water on Zero-Day Exploit Rumors

Encryption, Lockdown Mode, Malware & Threats, Privacy, Signal, Vulnerabilities, WhatsApp /

Signal Pours Cold Water on Zero-Day Exploit Rumors 16/10/2023 at 17:47 By Ryan Naraine Privacy-focused messaging firm Signal is pouring cold water on widespread rumors of a zero-day exploit in its popular encrypted chat app. The post Signal Pours Cold Water on Zero-Day Exploit Rumors appeared first on SecurityWeek. This article is an excerpt from

Signal Pours Cold Water on Zero-Day Exploit Rumors Read More »

Spyware Caught Masquerading as Israeli Rocket Alert Applications

Hamas, Israel, Malware & Threats, spyware /

Spyware Caught Masquerading as Israeli Rocket Alert Applications 16/10/2023 at 13:32 By Ionut Arghire A threat actor targets Israelis with spyware masquerading as an Android application for receiving rocket alerts. The post Spyware Caught Masquerading as Israeli Rocket Alert Applications appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Spyware Caught Masquerading as Israeli Rocket Alert Applications Read More »

SEC Investigating Progress Software Over MOVEit Hack

Data Breaches, Malware & Threats, MOVEit, Progress Software, Ransomware, SEC, Vulnerabilities, WS_FTP /

SEC Investigating Progress Software Over MOVEit Hack 12/10/2023 at 20:16 By Ionut Arghire Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software. The post SEC Investigating Progress Software Over MOVEit Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

SEC Investigating Progress Software Over MOVEit Hack Read More »

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin

backdoor, Malware & Threats, WordPress /

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin 12/10/2023 at 17:50 By Ionut Arghire A backdoor deployed on a compromised WordPress website poses as a legitimate plugin to hide its presence. The post Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin appeared first on SecurityWeek. This article is an excerpt from

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin Read More »

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business

Application Security, CVE-2023-36563, CVE-2023-41763, CVE-2023-44487, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities /

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business 10/10/2023 at 21:32 By Ryan Naraine Microsoft patches more than 100 vulnerabilities across the Windows ecosystem and warned that three are already being exploited in the wild. The post Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business appeared first on SecurityWeek. This article is an

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business Read More »

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop

Adobe, CVE-2023-26370, Incident Response, magento, Malware & Threats, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop 10/10/2023 at 20:17 By Ryan Naraine Adobe Commerce customers exposed to code execution, privilege escalation, arbitrary file system read, and security feature bypass attacks. The post Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop Read More »

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal

botnet, exploit, Malware & Threats, Mirai /

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal 10/10/2023 at 19:07 By Ionut Arghire A Mirai botnet variant tracked as IZ1H9 has updated its arsenal with 13 exploits targeting various routers, IP cameras, and other IoT devices. The post Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal appeared first on SecurityWeek. This article is an

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal Read More »

Magecart Web Skimmer Hides in 404 Error Pages

Magecart, Malware & Threats, web skimmer /

Magecart Web Skimmer Hides in 404 Error Pages 10/10/2023 at 15:37 By Ionut Arghire A newly identified Magecart web skimming campaign is tampering with ‘404’ error pages to hide malicious code. The post Magecart Web Skimmer Hides in 404 Error Pages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

Magecart Web Skimmer Hides in 404 Error Pages Read More »

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites

Malware & Threats, WordPress /

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites 09/10/2023 at 19:16 By Eduard Kovacs Recently patched TagDiv Composer plugin vulnerability exploited to hack thousands of WordPress sites as part of the Balada Injector campaign. The post Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites appeared first on

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites Read More »

Credential Harvesting Campaign Targets Unpatched NetScaler Instances

Malware & Threats /

Credential Harvesting Campaign Targets Unpatched NetScaler Instances 09/10/2023 at 17:47 By Ionut Arghire Threat actors are targeting Citrix NetScaler instances unpatched against CVE-2023-3519 to steal user credentials. The post Credential Harvesting Campaign Targets Unpatched NetScaler Instances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Credential Harvesting Campaign Targets Unpatched NetScaler Instances Read More »

Android Devices With Backdoored Firmware Found in US Schools

Android, backdoor, BadBox, cybercrime, Malware & Threats, Mobile & Wireless, Triada /

Android Devices With Backdoored Firmware Found in US Schools 06/10/2023 at 18:03 By Ionut Arghire A global cybercriminal operation called BadBox has infected the firmware of more than 70,000 Android smartphones, CTV boxes, and tablets with the Triada malware. The post Android Devices With Backdoored Firmware Found in US Schools appeared first on SecurityWeek. This

Android Devices With Backdoored Firmware Found in US Schools Read More »

Qakbot Hackers Continue to Push Malware After Takedown Attempt

Malware, Malware & Threats, Qakbot /

Qakbot Hackers Continue to Push Malware After Takedown Attempt 05/10/2023 at 15:31 By Eduard Kovacs Qakbot cybercriminals continue to push malware, which shows they are still operational after the recent takedown attempt. The post Qakbot Hackers Continue to Push Malware After Takedown Attempt appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Qakbot Hackers Continue to Push Malware After Takedown Attempt Read More »

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit

Malware & Threats, NPM, rootkit /

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit 05/10/2023 at 14:01 By Ionut Arghire Threat actor uses typosquatting to trick hundreds of users into downloading a malicious NPM package that delivers the r77 rootkit. The post Hundreds Download Malicious NPM Package Capable of Delivering Rootkit appeared first on SecurityWeek. This article is an excerpt

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit Read More »

Scroll to Top