U.S. Gov believes North Korea-linked Lazarus APT is behind Ronin Validator cyber heist
The U.S. government blames North Korea-linked APT Lazarus for the recent $600 million Ronin Validator cyber heist. The U.S. government...
News
The unceasing action of Anonymous against Russia
This week the Anonymous collective and its affiliates have targeted multiple Russian organizations stealing gigabytes of data. This week Anonymous...
Threat actors target the Ukrainian gov with IcedID malware
Threat actors are targeting Ukrainian government agencies with phishing attacks delivering the IcedID malware. The Ukrainian Computer Emergency Response Team...
Threat actors use Zimbra exploits to target organizations in Ukraine
Threat actors are targeting Ukrainian government organizations with exploits for XSS vulnerabilities in Zimbra Collaboration Suite (CVE-2018-6882). Ukraine’s CERT (CERT-UA)...
Conti Ransomware Gang claims responsibility for the Nordex hack
The Conti ransomware gang has claimed responsibility for the recent attack against Nordex, one of the largest manufacturers of wind...
ZingoStealer crimeware released for free in the cybercrime ecosystem
A new powerful crimeware called ZingoStealer was released for free by a threat actor known as Haskers Gang. ZingoStealer is a...
Auth bypass flaw in Cisco Wireless LAN Controller Software allows device takeover
Cisco fixed a critical flaw in Cisco Wireless LAN Controller (WLC) that could allow an unauthenticated, remote attacker to take...
Google fixed third zero-day in Chrome since the start of 2022
Google Chrome 100.0.4896.127 addresses a new high-severity zero-day vulnerability tracked as CVE-2022-1364, actively exploited by threat actors in the wild....
Ways to Develop a Cybersecurity Training Program for Employees
Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s...
Analysis of the SunnyDay ransomware
The analysis of a recent sample SunnyDay ransomware revealed some similarities with other ransomware, such as Ever101, Medusa Locker, Curator,...
US gov agencies e private firms warn nation-state actors are targeting ICS & SCADA devices
The US government agencies warned of threat actors that are targeting ICS and SCADA systems from various vendors. The Department...
CISA adds Windows CLFS Driver Privilege Escalation flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the CVE-2022-24521 Microsoft Windows CLFS Driver Privilege Escalation Vulnerability to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity...
Filing your taxes? Be wary of help found through search engines
The deadline for filing your taxes in the US is nearly upon us. April 18 is the very last date...
Stalkerware-type detections hit record high in 2021, but fell in second half
After having tracked stalkerware for years, Malwarebytes can reveal that in 2021, detections for apps that can non-consensually monitor another...
Zloader, another botnet bites the dust
Microsoft has announced that its Digital Crimes Unit (DCU) has taken legal and technical action to disrupt a malicious botnet...
Critical VMware Workspace ONE Access CVE-2022-22954 flaw actively exploited
Threat actors are actively exploiting a critical vulnerability in VMware Workspace ONE Access and Identity Manager recently patched by the...
“Your AppIe lD has been locked” spam email takes you on a website mystery tour
Spam which claims your account has been locked out and needs to be fixed are common. They drive people to...
Emotet modules and recent attacks
Emotet was first found in the wild in 2014. Back then its main functionality was stealing user banking credentials. Since...
Microsoft has taken legal and technical action to dismantle the Zloader botnet
Microsoft’s Digital Crimes Unit (DCU) announced to have shut down dozens C2 servers used by the infamous ZLoader botnet. Microsoft dismantled...
Cybersecurity Basics: Authentication and Authorization
With most security incidents caused by exposed secrets in DevOps pipelines and tools, proper authentication and authorization is essential. Explore...
CVE-2021-31805 RCE bug in Apache Struts was finally patched
Apache addressed a critical flaw in Apache Struts RCE that was linked to a previous issue that was not properly...
SMS group spam promises free gifts in return for bill payment
We’re seeing lots of examples of peculiar SMS messages sent to random groups of people. Most of these messages promise...
China-linked Hafnium APT leverages Tarrask malware to gain persistence
China-linked Hafnium APT group started using a new piece of new malware to gain persistence on compromised Windows systems. The...
April’s Patch Tuesday update includes fixes for two zero-day vulnerabilities
It’s that time of the month again. Time to check what needs to be updated and prioritize where necessary. The...
