One Year Later Rhadamanthys Is Still Dropped Via Malvertising
It was just a little over a year ago that the Rhadamanthys stealer was first publicly seen distributed via malicious...
News
Massive Utility Scam Campaign Spreads Via Online Ads
For many households, energy costs represent a significant part of their overall budget. And when customers want to discuss their...
Remote Monitoring Management Software Used In Phishing Attacks
Remote Monitoring & Management (RMM) software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today,...
Stopping A Targeted Attack On A Managed Service Provider Msp With Threatdown Mdr
In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign...
Ransomware Review March 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
New Go Loader Pushes Rhadamanthys
Malware loaders (also known as droppers or downloaders) are a popular commodity in the criminal underground. Their primary function is...
Stopping A K 12 Cyberattack Solarmarker With Threatdown Mdr
In early 2024, a large K-12 school district partnered with ThreatDown MDR to strengthen its cybersecurity posture. Shortly after onboarding,...
Pikabot Malware On The Rise What Organizations Need To Know
A new type of malware is being used by ransomware gangs in their attacks, and its name is PikaBot. A...
Fakebat Delivered Via Several Active Malvertising Campaigns
February was a particularly busy month for search-based malvertising with the number of incidents we documented almost doubling. We saw...
Pypi Suspends New User Registration To Block Malware Campaign
The Python Package Index (PyPI) has temporarily suspended user registration and the creation of new projects to deal with an...
Cisco Warns Of Password Spraying Attacks Targeting Vpn Services
Cisco has shared a set of recommendations for customers to mitigate password-spraying attacks that have been targeting Remote Access VPN...
How Pentesting As A Service Can Reduce Overall Security Costs
If your job involves keeping applications or data secure, you know how important penetration testing can be in identifying potential...
Decade Old Linux Wall Bug Helps Make Fake Sudo Prompts Steal Passwords
A vulnerability in the wall command of the util-linux package that is part of the Linux operating system could allow an unprivileged...
Retail Chain Hot Topic Hit By New Credential Stuffing Attacks
Image: Midjourney American retailer Hot Topic disclosed that two waves of credential stuffing attacks in November exposed affected customers' personal...
Vulnerability Affecting User Datagram Protocol Implementations
Security researchers have disclosed a vulnerability (CVE-2024-2169) affecting implementations of User Datagram Protocol (UDP).Successful exploitation of the vulnerability could allow...
Cisa Tags Microsoft Sharepoint Rce Bug As Actively Exploited
CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege...
Google Spyware Vendors Behind 50 Percent Of Zero Days Exploited In 2023
Google's Threat Analysis Group (TAG) and Google subsidiary Mandiant said they've observed a significant increase in the number of zero-day...
Inc Ransom Threatens To Leak 3tb Of Nhs Scotland Stolen Data
The INC Ransom extortion gang is threatening to publish three terabytes of data allegedly stolen after breaching the National Health Service...
Ransomware As A Service And The Strange Economics Of The Dark Web
Ransomware is changing, fast. The past three months have seen dramatic developments among the ransomware ecosystem to include the takedown...
New Darcula Phishing Service Targets Iphone Users Via Imessage
A new phishing-as-a-service (PhaaS) named ‘Darcula’ uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users...
Google Fixes Chrome Zero Days Exploited At Pwn2own 2024
Google fixed seven security vulnerabilities in the Chrome web browser on Tuesday, including two zero-days exploited during the Pwn2Own Vancouver...
Microsoft Monthly Security Update (May 2023)
Updated Source and Related Links.CVE-2023-24955 vulnerability is exploited in the wild. In a network-based attack, an authenticated attacker as a Site...
Ongoing Malware Campaign Targeting WordPress Websites
There are reports of an ongoing malware campaign, Sign1, targeting WordPress sites. The campaign entails attackers gaining access to WordPress...
Free Vpn Apps On Google Play Turned Android Phones Into Proxies
Over 15 free VPN apps on Google Play were found using a malicious software development kit that turned Android devices...
