Cisa Cautions Against Using Hacked Ivanti Vpn Gateways Even After Factory Resets
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) revealed today that attackers who hack Ivanti VPN appliances using one of...
News
New Bifrost Malware For Linux Mimics Vmware Domain For Evasion
A new Linux variant of the Bifrost remote access trojan (RAT) employs several novel evasion techniques, including the use of...
Brave Browser Launches Privacy Focused Ai Assistant On Android
Brave Software is the next company to jump into AI, announcing a new privacy-preserving AI assistant called "Leo" is rolling...
Microsoft Monthly Security Update (February 2024)
Exploit in the wild has been detected for CVE-2024-21410, affecting Microsoft Exchange Server. The vulnerability could be exploited by sending...
Biden Bans Mass Sale of Data to Hostile Nations
The White House has launched a new effort to stop data brokers lawfully selling Americans’ personal data to entities in...
TimbreStealer Malware Targets Mexican Victims with Tax-Related Lures
A new phishing campaign targeting Mexican citizens with financial lures has been discovered by Cisco Talos.Using Mexican tax-related lures, the...
Dark Web Market Revenues Rebound but Sector Fragments
Administrators and sellers on dark web marketplaces had a better 2023 than the previous year, pulling in an estimated $1.7bn...
Savvy Seahorse Targets Investment Platforms With DNS Scams
DNS threat actors operating under the moniker Savvy Seahorse have been observed employing sophisticated tactics to lure victims into fake...
US Government Warns Healthcare is Biggest Target for BlackCat Affiliates
The US government has warned the healthcare sector that it is now the biggest target of the BlackCat ransomware group.The...
Pharma Giant Cencora Reports Cybersecurity Breach
Leading drug distributor Cencora has disclosed a cybersecurity incident where data from its information systems was compromised, potentially containing personal...
High-Severity Vulnerability in Apple Products
Apple has released security updates to address a high-severity vulnerability (CVE-2024-23204) affecting their Shortcuts app in their products.The Apple Shortcuts...
Ransomware In 2023 Recap 5 Key Takeaways
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Nitrogen Shelling Malware From Hacked Sites
Nitrogen is the name given to a campaign and associated malware that have been distributed via malicious search ads. Its...
Malicious Ads For Restricted Messaging Applications Target Chinese Users
An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram...
2024 State Of Ransomware In Education 92 Spike In K 12 Attacks
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Stopping A Targeted Attack On A Managed Service Provider Msp With Threatdown Mdr
In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign...
One Year Later Rhadamanthys Is Still Dropped Via Malvertising
It was just a little over a year ago that the Rhadamanthys stealer was first publicly seen distributed via malicious...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Remote Monitoring Management Software Used In Phishing Attacks
Remote Monitoring & Management (RMM) software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today,...
Massive Utility Scam Campaign Spreads Via Online Ads
For many households, energy costs represent a significant part of their overall budget. And when customers want to discuss their...
Microsoft Monthly Security Update (February 2024)
Exploit in the wild has been detected for CVE-2024-21410, affecting Microsoft Exchange Server. The vulnerability could be exploited by sending...
High-Severity Vulnerability in Apple Products
Apple has released security updates to address a high-severity vulnerability (CVE-2024-23204) affecting their Shortcuts app in their products.The Apple Shortcuts...
Japan Warns Of Malicious Pypi Packages Created By North Korean Hackers
Japan's Computer Security Incident Response Team (JPCERT/CC) is warning that the notorious North Korean hacking group Lazarus has uploaded four...
Savvy Seahorse Gang Uses Dns Cname Records To Power Investor Scams
Image: Midjourney A threat actor named Savvy Seahorse is abusing CNAME DNS records Domain Name System to create a traffic...
