Malwarebytes

SEPTEMBER 29, 2021

Microsoft offers to help you with patching Exchange servers, CISA offers an insider threat tool, and together with the NSA they offer advice on how to choose and harden your VPN. Microsoft Exchange Emergency Mitigation service. Microsoft Exchange Emergency Mitigation service.

VPN 67

VPN Risk Education Cybersecurity 67

eSecurity Planet

FEBRUARY 15, 2022

Ransomware attacks on critical infrastructure and a surge in exploited vulnerabilities are getting the attention of U.S. cybersecurity agencies, which highlighted the threats in a pair of warnings issued in recent days. Also read: Top Vulnerability Management Tools for 2022. BlackByte Ransomware Attack Methods, IoCs.

Ransomware 127

Ransomware Encryption Backups Accountability 127

NopSec

MARCH 1, 2023

In this month’s trending CVEs we have a number of patches released by Microsoft to address critical vulnerabilities identified in Exchange and Windows operating systems. Fortinet released a patch for a critical remote command execution vulnerability that impacted their FortiNAC products.

Antivirus 52

Antivirus Engineering Authentication Accountability 52

SecureWorld News

APRIL 14, 2021

The agency remotely accessed Microsoft Exchange servers belonging to private companies and organizations in the United States. The FBI says this stopped an ongoing attack against Exchange servers and remedied an inability by many organizations to end persistent access by nation-state hackers. government?

Government 84

Government Passwords Cybersecurity Data breaches 84

SecureList

DECEMBER 1, 2023

Targeted attacks Unknown threat actor targets power generator with DroxiDat and Cobalt Strike Earlier this year, we reported on a new variant of SystemBC called DroxiDat that was deployed against a critical infrastructure target in South Africa. This proxy-capable backdoor was deployed alongside Cobalt Strike beacons.

Malware 91

Malware Ransomware Encryption Energy and Utilities 91

Security Boulevard

JULY 7, 2023

Delve into the multi-stage attack methodology, from deceptive phishing emails to custom-built modules, as we dissect its techniques and shed light on its impact. Gain valuable insights into the evolving threat landscape and learn how organizations can fortify their defenses against this emerging Latin American cyber threat.

Malware 104

Malware Encryption Phishing Internet 104

SecureList

NOVEMBER 17, 2021

Over the past 12 months, the style and severity of APT threats has continued to evolve. APT threat actors will buy initial network access from cybercriminals. Last year, we foresaw the APT and cybercrime worlds becoming more porous on an operational level. More countries using legal indictments as part of their cyberstrategy.

Mobile 129

Mobile Surveillance Ransomware Government 129

Security Boulevard

APRIL 27, 2022

The end payload of many of these attacks is AsyncRAT, a Remote Access Trojan that can be used to monitor, control, and steal sensitive data from victims' machines. Attackers trick victims using a spoof web page that poses as Thailand Pass, ultimately baiting users into downloading AsyncRAT. Figure 2: Complete attack chain workflow.

Antivirus 98

Antivirus Malware Phishing Engineering 98

McAfee

JANUARY 17, 2020

Microsoft made news this week with the widely reported vulnerability known as CVE-2020-0601 , which impacts the Windows CryptoAPI. This highly critical vulnerability allows an attacker to fake both signatures and digital certificates. Microsoft’s security patches are available here.

Government 52

Government Network Security Malware Software 52

Malwarebytes

JULY 4, 2022

We have already lost a lot of control over who and what has access to our data, and there are further threats to our freedom on the horizon. In the digital era, freedom is inextricably linked to privacy. After a good start, the Internet-enabled, technological revolution we are living through has hit some bumps in the road.

Internet 113

Internet Internet Technology DNS 113

SecureList

SEPTEMBER 11, 2023

This report takes a close look at the history of the Cuba group, and their attack tactics, techniques and procedures. We hope this article will help you to stay one step ahead of threats like this one. The gang has scored a series of resonant attacks on oil companies, financial services , government agencies and healthcare providers.

Ransomware 132

Ransomware Encryption Malware DDOS 132

Malwarebytes

APRIL 29, 2022

Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures (CVE) database. Its goal is to make it easier to share data across separate vulnerability capabilities (tools, databases, and services). This made for an exceptionally broad attack surface. CVE-2021-40539.

Internet 123

Internet Internet Software Authentication 123

SecureList

AUGUST 12, 2021

Targeted attacks. The leap of a Cycldek-related threat actor. While it is not possible to attribute attacks based on this technique alone, efficient detection of such triads reveals more and more malicious activity. We discovered the malware as part of an attack against a high-profile organization in Vietnam.

Ransomware 134

Ransomware Malware Banking Encryption 134

NopSec

APRIL 30, 2023

April was a busy month for Microsoft. Patch Tuesday introduced critical Windows fixes to address a pair of remote command execution (RCE) vulnerabilities, one of which features exploit code in the wild. We also cover RCE vulnerabilities in Sophos Web Appliance and Apache Superset. Researchers love kicking this can down the road!

Authentication 52

Authentication Internet Internet Software 52

SecureList

AUGUST 12, 2021

According to Kaspersky Security Network, in Q2 2021: Kaspersky solutions blocked 1,686,025,551 attacks from online resources across the globe. Ransomware attacks were defeated on the computers of 97,451 unique users. Financial threats. Financial threat statistics. Geography of financial malware attacks. Tajikistan.

Adware 92

Adware Malware Ransomware IoT 92

Security Boulevard

APRIL 20, 2022

As the findings of the ThreatLabz 2022 Phishing Report reveal, the challenge is getting harder: adversaries are getting craftier, and attackers are growing in numbers due to pre-built phishing kits available on the darknet. Download your free copy of the 2022 ThreatLabz Phishing Report, and check out our infographic.

Phishing 113

Phishing Retail Risk Architecture 113

Cisco Security

AUGUST 26, 2021

We constantly see new threats, and threat vectors, come and go; which puts a tremendous strain on the InfoSec teams that have to protect organizations and businesses from these threats. This year we saw the reemergence of old vectors: from ransomware & trojans, to supply chain attacks.

Technology 109

Technology Firewall VPN Authentication 109

CyberSecurity Insiders

JUNE 14, 2021

Due to the remote work boom and accelerated digital transformation projects, many of those conversations and exchanges are online. A recent ThycoticCentrify survey revealed that during the past year, over half the respondents are struggling with the theft of legitimate, privileged credentials (53%) and insider threat attacks (52%).

Digital transformation 145

Digital transformation Data breaches Cloud Migration Passwords 145

Cisco Security

MARCH 17, 2021

Clearly today’s application architectures use a lot of components, making them more complex, but the benefits run deep. Consider: Application attacks that span multiple containers and microservices are hard to identify, and even harder to isolate. “The eyes are the window to your soul.” How about a new twist?

Architecture 95

Architecture Software Digital transformation Risk 95

SecureList

NOVEMBER 26, 2021

IT threat evolution Q3 2021. IT threat evolution in Q3 2021. IT threat evolution in Q3 2021. According to Kaspersky Security Network, in Q3 2021: Kaspersky solutions blocked 1,098,968,315 attacks from online resources across the globe. Ransomware attacks were defeated on the computers of 108,323 unique users.

Malware 90

Malware Adware Ransomware IoT 90

SecureList

OCTOBER 26, 2021

For more than four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. The SolarWinds incident reported last December stood out because of the extreme carefulness of the attackers and the high-profile nature of their victims.

Malware 140

Malware Government Surveillance Spyware 140

SecureList

MARCH 7, 2024

Since the payment was made on a fake website, both the money and the victim’s card details ended up in the attackers’ hands, and the wish to play the new release remained only a wish. To get access to the content (or contest), phishing sites prompted the victim to sign in to one of their gaming accounts.

Phishing 95

Phishing Scams Cryptocurrency Accountability 95

SecureList

JULY 28, 2022

For five years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. Readers who would like to learn more about our intelligence reports or request more information on a specific report, are encouraged to contact intelreports@kaspersky.com.

Malware 130

Malware Firmware Phishing Cryptocurrency 130

Malwarebytes

MAY 21, 2023

Read on to learn more about the pros, cons, conversations, and controversies surrounding ChatGPT, including a call to (halt) action from technology leaders. If you haven’t heard about ChatGPT yet, perhaps you’ve just been thawed from cryogenic slumber or returned from six months off the grid. Enter: ChatGPT.

Cybersecurity 75

Cybersecurity Artificial Intelligence Social Engineering Engineering 75

SecureList

NOVEMBER 14, 2022

While the geopolitical landscape has durably shifted, cyberattacks remain a constant threat and show no signs of receding – quite the contrary. Mobile devices exposed to wide attacks. It is fair to say that since last year’s predictions , the world has dramatically changed. What we predicted in 2022.

Firmware 106

Firmware Surveillance Mobile Telecommunications 106