Keytrap Attack Internet Access Disrupted With One Dns Packet
A serious vulnerability named KeyTrap in the Domain Name System Security Extensions (DNSSEC) feature could be exploited to deny internet access...
News
Wyze Investigating Security Issue Amid Ongoing Outage
Wyze Labs is investigating a security issue while experiencing a service outage that has been causing connectivity issues since this...
Alphv Ransomware Claims Loandepot Prudential Financial Breaches
The ALPHV/Blackcat ransomware gang has claimed responsibility for the recent network breaches of Fortune 500 company Prudential Financial and mortgage...
North Korean Hackers Now Launder Stolen Crypto Via Yomix Tumbler
The North Korean hacker collective Lazarus, infamous for having carried out numerous large-scale cryptocurrency heists over the years, has switched...
Solarwinds Fixes Critical Rce Bugs In Access Rights Audit Solution
SolarWinds has patched five remote code execution (RCE) flaws in its Access Rights Manager (ARM) solution, including three critical severity...
Alpha Ransomware Linked To Netwalker Operation Dismantled In 2021
Security researchers analyzing the Alpha ransomware payload and modus operandi discovered overlaps with the now-defunct Netwalker ransomware operation. Netwalker was a prolific...
Microsoft Monthly Security Update (February 2024)
Exploit in the wild has been detected for CVE-2024-21410, affecting Microsoft Exchange Server. The vulnerability could be exploited by sending...
PDF Malware on the Rise, Used to Spread WikiLoader, Ursnif and DarkGate
PDF threats are on the rise with cybercriminals spreading malware, including WikiLoader, Ursnif and DarkGate, through PDFs, a new report...
Google Warns Unfair AI Rules Could Empower Hackers, Harming Defense
Google has called for a balanced regulatory approach to AI in order to avoid a future where attackers can innovate...
Hackers Exploit EU Agenda in Spear Phishing Campaigns
Organizations based in the EU are being targeted by spear phishing campaigns leveraging EU political and diplomatic events, according to...
New Ivanti Vulnerability Observed as Widespread Security Concerns Grow
Read more on Ivanti vulnerabilities: Two Ivanti Zero-Days Actively Exploited in the Wild Ivanti Zero-Days Exploited By Multiple Actors Globally...
2024 State Of Ransomware In Education 92 Spike In K 12 Attacks
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Ransomware Review January 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Atomic Stealer Rings In The New Year With Updated Version
Last year, we documented malware distribution campaigns both via malvertising and compromised sites delivering Atomic Stealer (AMOS) onto Mac users....
Malicious Ads For Restricted Messaging Applications Target Chinese Users
An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram...
Remote Monitoring Management Software Used In Phishing Attacks
Remote Monitoring & Management (RMM) software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today,...
Ransomware In 2023 Recap 5 Key Takeaways
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Massive Utility Scam Campaign Spreads Via Online Ads
For many households, energy costs represent a significant part of their overall budget. And when customers want to discuss their...
Nitrogen Shelling Malware From Hacked Sites
Nitrogen is the name given to a campaign and associated malware that have been distributed via malicious search ads. Its...
Microsoft Monthly Security Update (February 2024)
Exploit in the wild has been detected for CVE-2024-21410, affecting Microsoft Exchange Server. The vulnerability could be exploited by sending...
New Qbot Malware Variant Uses Fake Adobe Installer Popup For Evasion
The developer of Qakbot malware, or someone with access to the source code, seems to be experimenting with new builds as fresh samples...
Over 13 000 Ivanti Gateways Vulnerable To Actively Exploited Bugs
Thousands of Ivanti Connect Secure and Policy Secure endpoints remain vulnerable to multiple security issues first disclosed more than a...
Three Critical Application Security Flaws Scanners Cant Detect
In today's interconnected world, web application security is crucial for business continuity. Yet, web application attacks are now involved in...
