Cisco will not address critical RCE in end-of-life Small Business RV routers
Cisco announced that it will not release updates to fix the CVE-2022-20825 flaw in end-of-life Small Business RV routers. Cisco...
News
BRATA Android Malware evolves and targets the UK, Spain, and Italy
The developers behind the BRATA Android malware have implemented additional features to avoid detection. The operators behind the BRATA Android malware have implemented...
Critical flaw in Ninja Forms WordPress Plugin actively exploited in the wild
A critical vulnerability in Ninja Forms plugin potentially impacted more than one million WordPress websites In middle June, the Wordfence...
Experts warn of a new eCh0raix ransomware campaign targeting QNAP NAS
Experts warn of a new ech0raix ransomware campaign targeting QNAP Network Attached Storage (NAS) devices. Bleeping Computer and MalwareHunterTeam researchers,...
US DoJ announced to have shut down the Russian RSOCKS Botnet
The U.S. Department of Justice (DoJ) announced to have shut down the infrastructure associated with the Russian botnet RSOCKS. The...
MaliBot Android Banking Trojan targets Spain and Italy
Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers...
Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed
China-linked threat actors exploited the zero-day flaw CVE-2022-1040 in Sophos Firewall weeks before it was fixed by the security vendor....
Websites Hosting Fake Cracks Spread Updated CopperStealer Malware
We found updated samples of the CopperStealer malware infecting systems via websites hosting fake software. If you like the site,...
Security 101: Cloud-native Virtual Patching
Learn about the challenges faced when implementing a vulnerability and patch management policy and how does cloud-native virtual patching can...
State of OT Security in 2022: Big Survey Key Insights
Learn about the state of OT Security in 2022 by reading the key insights found through surveying more than 900...
Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company
Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab...
A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould
Experts discovered a feature in Microsoft 365 suite that could be abused to encrypt files stored on SharePoint and OneDrive...
BlackCat Ransomware affiliates target unpatched Microsoft Exchange servers
The BlackCat ransomware gang is targeting unpatched Exchange servers to compromise target networks, Microsoft warns. Microsoft researchers have observed BlackCat ransomware gang...
ALPHV/BlackCat ransomware gang starts publishing victims’ data on the clear web
ALPHV/BlackCat ransomware group began publishing victims’ data on the clear web to increase the pressure on them and force them to...
Researchers disclosed a remote code execution flaw in Fastjson Library
Researchers disclosed a remote code execution vulnerability, tracked as CVE-2022-25845, in the popular Fastjson library. Cybersecurity researchers from JFrog disclosed details of...
Cisco fixed a critical Bypass Authentication flaw in Cisco ESA and Secure Email and Web Manager
Cisco addressed a critical bypass authentication flaw in Cisco Email Security Appliance (ESA) and Secure Email and Web Manager. Cisco...
A new rootkit comes to an ATM near you
It’s not unusual to hear about malware created to affect automated teller machines (ATMs). Malware can be planted at the...
Globant suffers network breach due to LAPSUS$ compromise
Globant, an IT and software development firm with offices all around the globe, admitted in a press statement Wednesday that...
Apple’s child safety features are coming to a Messages app near you
Apple will soon be rolling out its promised child safety features in the Messages app for users in Australia, Canada,...
Emotet fixes bug in code, resumes spam campaign
Emotet threat actors resumed their email spam campaign on Monday after stopping it late last week to fix a bug....
Karakurt extortion group: Threat profile
The FBI (Federal Bureau of Investigation), together with CISA (Cybersecurity and Infrastructure Security Agency) and other federal agencies, recently released...
Threat profile: RansomHouse makes extortion work without ransomware
Cybersecurity is an industry known for many hats: white hats, black hats, and grey hats. White hats refer to “the...
Email compromise leads to healthcare data breach at Kaiser Permanente
At least 69,000 people have been impacted by a data breach at Kaiser Permanente, a long-running managed healthcare consortium. The...
Record breaking HTTPS DDoS attack
Last week, Cloudflare blocked the largest HTTPS DDoS attack on record. The attack amassed some 26 million requests per second...
