Malware & Threats

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks

exploited, Malware & Threats, SonicWall /

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks 2024-09-09 at 14:31 By Eduard Kovacs A recently patched SonicWall vulnerability tracked as CVE-2024-40766 may have been exploited in ransomware attacks. The post Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source […]

React to this headline:

Loading spinner

Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks Read More »

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa

APT29, Google Chrome, Malware & Threats, Midnight Blizzard, Nation-State, Nobelium, Russia /

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa 2024-08-29 at 16:46 By Ryan Naraine Google TAG publishes evidence showing identical or striking similarities between exploits used by Russia’s APT29 and commercial spyware vendors. The post Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa appeared first on SecurityWeek.

React to this headline:

Loading spinner

Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa Read More »

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

Iran, Malware, Malware & Threats, Microsoft, Tickler /

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE 2024-08-29 at 13:01 By Eduard Kovacs The Iran-linked state-sponsored hacker group tracked as Peach Sandstorm has started using a new backdoor in attacks aimed at the US and UAE. The post Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE

React to this headline:

Loading spinner

Iranian Hackers Use New Tickler Malware to Collect Intel From US, UAE Read More »

Malware Delivered via Malicious Pidgin Plugin, Signal Fork

Malware, Malware & Threats /

Malware Delivered via Malicious Pidgin Plugin, Signal Fork 2024-08-28 at 16:01 By Eduard Kovacs Threat actors delivered malware via instant messaging applications, including a malicious Pidgin plugin and an unofficial Signal fork. The post Malware Delivered via Malicious Pidgin Plugin, Signal Fork appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Malware Delivered via Malicious Pidgin Plugin, Signal Fork Read More »

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI

In Other News, Malware & Threats /

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI 2024-08-23 at 17:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: FAA improving cyber rules for airplanes, NGate Android malware used to steal cash from ATMs, abusing Slack AI to steal data. The post

React to this headline:

Loading spinner

In Other News: FAA Improving Cyber Rules, Android Malware Enables ATM Withdrawals, Data Theft via Slack AI Read More »

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware

CVE-2021-44228, Datadog, Log4j, Log4Shell, Malware & Threats, Vulnerabilities /

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware 2024-08-22 at 19:01 By Ryan Naraine More than two years after the Log4j crisis, organizations are still being hit by crypto-currency miners and backdoor scripts. The post Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware Read More »

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack

In Other News, Malware & Threats /

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack 2024-08-16 at 17:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: there are 400 CVE Numbering Authorities, crash reports can be a valuable source of information, and Schlatter was hit by a cyberattack. The post In Other News: 400 CNAs, Crash Reports,

React to this headline:

Loading spinner

In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack Read More »

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign

AWS, cloud security, IAM, Malware & Threats, misconfiguration, Palo Alto Networks /

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign 2024-08-16 at 17:46 By Ionut Arghire Security researchers at Palo Alto Networks discover a threat actor extorting organizations after compromising their cloud environments using inadvertently exposed environment variables. The post Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign Read More »

New Banshee Stealer macOS Malware Priced at $3,000 Per Month

Banshee stealer, Mac malware, Malware & Threats /

New Banshee Stealer macOS Malware Priced at $3,000 Per Month 2024-08-16 at 14:46 By Eduard Kovacs Russian cybercriminals are advertising a new macOS malware, Banshee Stealer, capable of stealing passwords, browser data, and crypto wallets.  The post New Banshee Stealer macOS Malware Priced at $3,000 Per Month appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

New Banshee Stealer macOS Malware Priced at $3,000 Per Month Read More »

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw

IPv6, Malware & Threats, Microsoft, Patch Tuesday, TCP/IP, Vulnerabilities, Zero-Day /

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw 2024-08-15 at 20:01 By Ryan Naraine Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack. The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on

React to this headline:

Loading spinner

Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw Read More »

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks

Black Hat, BlackLotus, Featured, Malware & Threats, SafeBreach, software downgrade, Vulnerabilities, Windows Update /

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks 2024-08-07 at 18:16 By Ryan Naraine Researcher showcases hack against Microsoft Windows Update architecture, turning fixed vulnerabilities into zero-days. The post Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks Read More »

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning

China APT, DNS, Malware & Threats, StormBamboo /

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning 2024-08-05 at 16:47 By Eduard Kovacs Chinese group StormBamboo spotted delivering Windows and macOS malware by compromising an ISP and using DNS poisoning. The post Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning Read More »

New BlankBot Android Trojan Can Steal User Data

Android trojan, Malware & Threats, Mobile & Wireless /

New BlankBot Android Trojan Can Steal User Data 2024-08-02 at 15:16 By Ionut Arghire The BlankBot Android trojan exfiltrates user data, executes C&C commands, and supports custom injections, keylogging, and screen recording. The post New BlankBot Android Trojan Can Steal User Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

New BlankBot Android Trojan Can Steal User Data Read More »

Cloudflare Tunnels Abused for Malware Delivery

Malware, Malware & Threats /

Cloudflare Tunnels Abused for Malware Delivery 2024-08-02 at 13:46 By Ionut Arghire Threat actors are abusing Cloudflare’s TryCloudflare feature to create one-time tunnels for the distribution of remote access trojans. The post Cloudflare Tunnels Abused for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Cloudflare Tunnels Abused for Malware Delivery Read More »

BingoMod Android RAT Wipes Devices After Stealing Money

Android trojan, Malware, Malware & Threats, Mobile & Wireless, mobile malware, RAT /

BingoMod Android RAT Wipes Devices After Stealing Money 2024-08-01 at 15:16 By Ionut Arghire The BingoMod Android trojan steals user information and communication and allows attackers to steal money via account takeover. The post BingoMod Android RAT Wipes Devices After Stealing Money appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

BingoMod Android RAT Wipes Devices After Stealing Money Read More »

Massive OTP-Stealing Android Malware Campaign Discovered 

Malware & Threats /

Massive OTP-Stealing Android Malware Campaign Discovered  2024-07-31 at 20:16 By Kevin Townsend Android malware can intercept and steal OTPs and login credentials, leading to complete account takeovers. The post Massive OTP-Stealing Android Malware Campaign Discovered  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Massive OTP-Stealing Android Malware Campaign Discovered  Read More »

Chrome 127 Improves Cookie Protection on Windows

Chrome, cookies, Malware & Threats /

Chrome 127 Improves Cookie Protection on Windows 2024-07-31 at 16:06 By Ionut Arghire Google has improved the security of cookies in Chrome on Windows and rolled out a Chrome 127 update to address critical- and high-severity vulnerabilities. The post Chrome 127 Improves Cookie Protection on Windows appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chrome 127 Improves Cookie Protection on Windows Read More »

Indian APT Targeting Mediterranean Ports and Maritime Facilities

APT, India, Malware & Threats, Maritime /

Indian APT Targeting Mediterranean Ports and Maritime Facilities 2024-07-30 at 17:01 By Ionut Arghire The SideWinder APT has been targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea in recent attacks. The post Indian APT Targeting Mediterranean Ports and Maritime Facilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Indian APT Targeting Mediterranean Ports and Maritime Facilities Read More »

Thousands Download New Mandrake Android Spyware Version From Google Play

Android trojan, Google Play, Malware & Threats, Mobile & Wireless, spyware /

Thousands Download New Mandrake Android Spyware Version From Google Play 2024-07-30 at 13:16 By Ionut Arghire Five Android applications containing the Mandrake spyware have been downloaded over 32,000 times from Google Play since 2022. The post Thousands Download New Mandrake Android Spyware Version From Google Play appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Thousands Download New Mandrake Android Spyware Version From Google Play Read More »

Network of 3,000 GitHub Accounts Used for Malware Distribution

GitHub, Malware, Malware & Threats, Stargazer Goblin /

Network of 3,000 GitHub Accounts Used for Malware Distribution 2024-07-25 at 14:16 By Ionut Arghire Stargazer Goblin has created a network of over 3,000 GitHub accounts to distribute malware through phishing repositories. The post Network of 3,000 GitHub Accounts Used for Malware Distribution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Network of 3,000 GitHub Accounts Used for Malware Distribution Read More »

Scroll to Top