2017, Malware and Security Intelligence

2017

Malware

Security Intelligence

Microsoft warns of spam campaign exploiting CVE-2017-11882 flaw

Security Affairs

JUNE 10, 2019

Spam messages are carrying weaponized RTF documents that could infect users with malware without any user interaction, just opening the RTF documents. The spam messages are sent in various European languages, threat actors are exploiting the Microsoft Office and Wordpad CVE-2017-11882 vulnerability. Pierluigi Paganini.

Security Intelligence

Security Intelligence Advertising Malware Information Security

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Cybersecurity firm Kaspersky discovered a new strain of malware that is believed to be part of the arsenal of theUS Central Intelligence Agency (CIA). Cybersecurity firm Kaspersky has discovered a new malware that experts attribute to the US Central Intelligence Agency. We therefore named this malware Purple Lambert.”

Malware

Malware Hacking Government Telecommunications

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

A long-running cryptomining campaign conducted by 8220 hackers now targets Linux servers

Security Affairs

JULY 1, 2022

Microsoft Security Intelligence experts are warning of a long-running campaign conducted by a cloud threat actor group, tracked as 8220, that is now targeting Linux servers to install crypto miners. “We observed notable updates to the long-running malware campaign targeting Linux systems by a group known as the 8220 gang.”

Security Intelligence

Security Intelligence Malware Hacking Information Security

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. ‘FATAL’ ERROR.

DNS

DNS Penetration Testing Malware Hacking

Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine

Security Affairs

NOVEMBER 11, 2022

Get TTPs and protection info: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 14, 2022. The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017, causing billions worth of damage.

Ransomware

Ransomware Telecommunications DNS Hacking

Iran-linked APT is exploiting the Zerologon flaw in attacks

Security Affairs

OCTOBER 6, 2020

Microsoft 365 Defender customers can also refer to these detections: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 5, 2020. The first MuddyWater campaign was observed in late 2017 when targeted entities in the Middle East. We strongly recommend patching. ” reads the analysis published by Microsoft.

Authentication

Authentication Advertising Architecture Security Intelligence

NSO Group Placed on U.S. Blacklist

SecureWorld News

NOVEMBER 4, 2021

Pegasus is a malware that infects mobile devices and enables operators to extract messages, photos, emails, record calls and secretly activate microphones. In another case in Mexico, reporter Cecilio Pineda Birto was killed in 2017 just a couple weeks after his phone number appeared on the leaked list.

Spyware

Spyware Government Malware Mobile

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Cisco Security

MAY 27, 2022

Malware Threat Intelligence made easy and available, with Cisco Secure Malware Analytics and SecureX by Ben Greenbaum . SecureX: Bringing Threat Intelligence Together by Ian Redden . Secure Endpoint for iOS/Security Connector . Secure Malware Analytics (formerly Threat Grid) .

Malware

Malware Accountability DNS Technology

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

In this article we will learn how to address and effectively respond to major enterprise cybersecurity threats and provide tips to mitigate IT security risk. Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Is G Suite HIPAA Compliant? An Admin Guide For Configuring G Suite for HIPAA Compliance

Spinone

JULY 8, 2020

While it has stopped doing this circa 2017, there is nothing to prevent Google from doing this again in the future with a free G Suite plan. Email security and advanced protection – Email is often the gateway to security breaches or malware attacks. Google has historically scanned content for advertising purposes.

Encryption

Encryption Backups Accountability Ransomware

Cyber Security Informer

Microsoft warns of spam campaign exploiting CVE-2017-11882 flaw

Purple Lambert, a new malware of CIA-linked Lambert APT group

Webinars

Trending Sources

A long-running cryptomining campaign conducted by 8220 hackers now targets Linux servers

Webinars

French Firms Rocked by Kasbah Hacker?

Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine

Iran-linked APT is exploiting the Zerologon flaw in attacks

NSO Group Placed on U.S. Blacklist

Black Hat Asia 2022 Continued: Cisco Secure Integrations

Cyber Security Awareness and Risk Management

Is G Suite HIPAA Compliant? An Admin Guide For Configuring G Suite for HIPAA Compliance

Stay Connected