While attackers begin exploiting a second Log4j flaw, a third one emerges
Experts warn that threat actors are actively attempting to exploit a second bug disclosed in the popular Log4j logging library. American web...
Month: December 2021
Multiple Nation-State actors are exploiting Log4Shell flaw
Nation-state actors from China, Iran, North Korea, and Turkey are attempting to exploit the Log4Shell vulnerability to in attacks in the wild....
Grindr fined for selling user data to advertisers
Dating network Grindr has been slapped with a US$7.7 million fine by Norwegian regulator Datatilsynet for sharing data with advertisers....
After Log4j, December’s Patch Tuesday has snuck up on us
For anyone about to sit back after checking their environment for the Log4j vulnerabilities and applying patches where needed, here...
cl0p Ransomware Victim: enprecis-com
NOTE: The information on this page is fully automated and scraped directly from the cl0p .onion Dark Web Tor Blog...
Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials
Threat actors are using a malicious Internet Information Services (IIS) Server module, dubbed Owowa, to steal Microsoft Exchange credentials. Kaspersky...
Kaspersky Managed Detection and Response: interesting cases
Kaspersky Managed Detection and Response (MDR) provides advanced protection against the growing number of threats that bypass automatic security barriers....
Kaspersky Security Bulletin 2021. Statistics
All statistics in this report are from the global cloud service Kaspersky Security Network (KSN), which receives information from components...
Volatile and Adaptable: Tracking the Movements of Modern Ransomware
Trend Micro's tracking of modern ransomware, as well as of older families, shows which attacks are gaining momentum and which...
What SMBs can do to protect against Log4Shell attacks
As you may already know, the business, tech, and cybersecurity industries have been buzzing about Log4Shell (CVE-2021-44228), aka Logjam, the...
FBI’s investigation accidentally revealed the HelloKitty ransomware gang operates out of Ukraine
While investigating a data breach suffered by a healthcare organization, FBI accidentally revealed that it believes that the HelloKitty ransomware...
LockBit 2.0 Ransomware Victim: cunninghamgolfcar[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Microsoft December 2021 Patch Tuesday fixes an actively exploited zero-day
Microsoft December 2021 Patch Tuesday addresses 67 vulnerabilities, including an actively exploited Windows Installer vulnerability. Microsoft December 2021 Patch Tuesday...
CVE-2021-44151
Summary: An issue was discovered in Reprise RLM 14.2. As the session cookies are small, an attacker can hijack any...
CVE-2016-8212
Summary: An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper OCSP Validation...
CVE-2019-3900
Summary: An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6,...
CVE-2021-44153
Summary: An issue was discovered in Reprise RLM 14.2. When editing the license file, it is possible for an admin...
CVE-2021-44154
Summary: An issue was discovered in Reprise RLM 14.2. By using an admin account, an attacker can write a payload...
Iran-linked Seedworm APT targets Telecoms organizations across the Middle East and Asia
Researchers uncovered a new Seedworm campaign targeting telecommunication and IT service providers in the Middle East and Asia. Iran-linked APT...
CVE-2021-42278 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-42278 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. An exploit and a vulnerability...
CVE-2021-42287 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-42287 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. An exploit and a vulnerability...
DHS announces its ‘Hack DHS’ bug bounty program
The DHS has launched a new bug bounty program dubbed ‘Hack DHS’ to discover security vulnerabilities in external DHS systems....
Owowa: the add-on that turns your OWA into a credential stealer and remote access panel
While looking for potentially malicious implants that targeted Microsoft Exchange servers, we identified a suspicious binary that had been submitted...
Adobe addresses over 60 vulnerabilities in multiple products
Adobe warns of threat actors that could exploit critical vulnerabilities in multiple products running on Windows and macOS systems. Adobe...
