0

January 7, 2022

Application Security / Audits / Cloud Security / Compliance / Data Protection / Email Security / Endpoint Security / Identity & Access / Malware / Network Security / NEWS & INDUSTRY / Tracking & Law Enforcement / Virus & Malware / Vulnerabilities

Attackers Hitting VMWare Horizon Servers With Log4j Exploits

Threat hunters in the U.K.’s National Health Service have raised an alarm for an unknown threat actor hitting vulnerable VMWare Horizon servers with exploits...

0

January 5, 2022

Application Security / Cloud Security / Cyberwarfare / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Malware / Network Security / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities

Zloader Banking Malware Exploits Microsoft Signature Verification

The aggressive Zloader banking malware campaign is exploiting Microsoft’s digital signature verification method to inject code into a signed system DLL, according to researchers...

0

December 10, 2021

Application Security / Cloud Security / Compliance / Cyberwarfare / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Malware / Network Security / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities / Whitepapers

Exploits Swirling for Major Security Defect in Apache Log4j

Enterprise security response teams are bracing for a hectic weekend as public exploits — and in-the-wild attacks — circulate for a gaping code execution...

0

November 12, 2021

Application Security / Cloud Security / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Incident Response / Malware / Network Security / NEWS & INDUSTRY / Phishing / Security Architecture / Virus & Malware / Vulnerabilities

‘BotenaGo’ Malware Targets Routers, IoT Devices with Over 30 Exploits

A newly discovered Golang-based malware is using over 30 exploits in attacks, potentially putting millions of routers and Internet of Things (IoT) at risk...

0

November 9, 2021

Cybercrime / NEWS & INDUSTRY / Vulnerabilities

Russian Cybercrime Group Exploits SolarWinds Serv-U Vulnerability

The Russia-linked ‘Evil Corp’ cybercrime group has been exploiting a vulnerability in SolarWinds Serv-U for initial infection, cybersecurity and risk mitigation firm NCC Group...

0

November 5, 2021

IoT Security / NEWS & INDUSTRY / Vulnerabilities

Device Exploits Earn Hackers Over $1 Million at Pwn2Own Austin 2021

The Zero Day Initiative’s Pwn2Own Austin 2021 hacking contest has come to an end, with participants earning a total of more than $1 million...

0

October 20, 2021

Endpoint Security / NEWS & INDUSTRY / Vulnerabilities

Zerodium Buying Zero-Day Exploits Targeting VPN Software

Exploit acquisition company Zerodium on Tuesday announced that it’s looking to buy zero-day exploits targeting popular VPN software. Specifically, the company wants to acquire...

0

September 21, 2021

Security News

Cring Ransomware Gang Exploits 11-Year-Old ColdFusion Bug

Unidentified threat actors breached a server running an unpatched, 11-year-old version of Adobe’s ColdFusion 9 software in minutes to remotely take over control and...

0

September 6, 2021

Conti Ransomware / Microsoft Exchange / ProxyShell Vulnerabilities / Ransomware group / Vulnerabilities and Exploits

With ProxyShell Exploits, Conti Ransomware is Now Targeting Exchange Servers – E Hacking News

  Using recently disclosed ProxyShell vulnerability exploits, the Conti ransomware group is hacking into Microsoft Exchange servers and compromising corporate networks. ProxyShell is a...

0

August 18, 2021

Security News

NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware

A North Korean threat actor has been discovered taking advantage of two exploits in Internet Explorer to infect victims with a custom implant as...