Skip to content

Home
Breaches
Threats
Compliance
Trends
Tools
Insights

About Us

Cyber Threats

September 30, 2019

New Fileless Malware Threat Discovered That Downloads its Own LOLBins

A new form of fileless malware has been discovered that uses legitimate Windows tools – living-off-the-land binaries or LOLBins – to conduct its malicious actions. ...

September 12, 2019

Exploit Kit Activity Increases: 4 New Malvertising Campaigns Detected

Exploit kit activity may not be at the level seen in 2016, but the malicious website toolkits are enjoying something of a resurgence. New exploit ...

September 11, 2019

Weaponized BlueKeep Exploit Released

A weaponized exploit for the BlueKeep vulnerability has been published online by security researchers at Rapid7 and Metasploit. BlueKeep – CVE-2019-0708 – is a wormable ...

September 6, 2019

Flaws in GPS Trackers Can be Exploited to Reveal the Location of Children

Many parents are using GPS trackers to monitor the location of their children, but a recent study conducted by researchers at Avast Threat Labs has shown ...

August 27, 2019

Apple Fixes Critical Jailbreak Vulnerability… Again

A patch has been released to address a critical jailbreak vulnerability in iOS 12.4. The flaw is a use-after-free vulnerability affecting the iOS kernel and ...

August 27, 2019

IRS Warns of Phishing Scam Targeting Taxpayers and Tax Professionals

The Internal Revenue Service (IRS) has issued a warning to U.S. taxpayers and tax professionals about a new nationwide phishing campaign that is spreading keylogging ...

August 8, 2019

New Threat Intelligence Report Provides Insights into Email-Based Malware Attacks

A new report has been released that contains an analysis of the most common malware threats that are delivered via email, the most targeted industry ...

August 5, 2019

U.S. Utilities Targeted in Phishing Campaign Spreading New RAT

U.S. utilities are being targeted in a phishing campaign distributing a new malware variant called LookBack. The spear phishing campaign impersonates a U.S. engineering licensing ...

July 28, 2019

Cisco Warns of Increase in Email Threats and Complacency About Email Security

The findings of Cisco’s Threat Report and CISO Benchmark Study reveal a marked increase in email security threats and highlight the importance of investing in ...

July 28, 2019

Mid-Year Threat Report Shows Rise in Ransomware-as-a-Service and IoT Malware Threats

SonicWall’s 2019 Cyber Threat Report shows a there has been a 20% fall in malware attacks in the first half of 2019, but there have ...

July 22, 2019

Phishing Campaign Targets Administrator Credentials with Office Alerts

A new phishing campaign has been identified which uses Office 365 admin alerts as a lure to get administrators to click and disclose their login ...

July 19, 2019

Phishing Campaign Uses Fake Office 365 Site to Download Trickbot Trojan

The Trickbot Trojan is being distributed via a new fake Office 365 phishing website. The website is virtually identical to official Microsoft Office 365 site, ...

July 19, 2019

Phishing Campaign Uses SHTML Files to Redirect Users to Malicious Websites

A novel new phishing campaign has been detected that uses an unusual method of directing users to malicious websites that harvest credentials. Phishing campaigns typically ...

July 18, 2019

Patch Issued for Critical Drupal 8.7.4 Vulnerability

A critical flaw in the Drupal website content management system (CMS) has been patched. The vulnerability is in the core component of the CMS and ...

July 9, 2019

Patch Tuesday July 2019: 15 Critical Vulnerabilities Fixed Including 2 Actively Exploited Zero Days

Patch Tuesday July 2019 has seen Microsoft fix 77 vulnerabilities including 15 rated critical and two actively exploited zero days. Six of the vulnerabilities patched ...

July 3, 2019

New Mac Malware Being Pushed via High Ranking Websites

A new form of Mac malware has been discovered that is being distributed through a variety of websites that rank high in the Google search ...

June 25, 2019

Malspam Campaign Delivers Nanocore and Loki Bot Malware in ISO Files

In April, several different malspam campaigns were intercepted which attempted to deliver Nanocore and Loki Bot malware concealed inside small ISO image files of between ...

June 18, 2019

Microsoft Urges Azure Customers to Update Exim to Fix Actively Exploited Vulnerability

Microsoft has issued a stern warning to Azure customers to update their virtual machines and ensure they are running Exim version 4.92. Recently, a zero-day ...

June 16, 2019

Netflix Phishing Scam Targets Users in Ireland

Netflix users in Ireland are being warned to be wary of a new Netflix-themed phishing scam that attempts to get users to reveal sensitive information ...

June 6, 2019

BlueKeep Exploit Developed That Allows Full Takeover of Windows 7 or Windows 2008 Device in 22 Seconds

A working exploit for the Microsoft BlueKeep flaw (CVE-2019-0708) has been developed that allows a full, remote account takeover in 22 seconds with no user ...

June 5, 2019

New Zero-Day Vulnerability Identified in Microsoft Remote Desktop Services

A zero-day vulnerability has been identified in Microsoft Remote Desktop Services which could allow an attacker to hijack an existing session that has been locked. ...

June 4, 2019

MacOS Zero-Day Vulnerability Allows Synthetic Mouse Clicks to Run Malicious Code

A zero-day vulnerability has been discovered in Apple’s Mojave operating system which could be exploited to run malicious code on vulnerable devices without being detected. ...

May 31, 2019

Emotet was the Biggest Email Threat in Q1

A new report from Proofpoint has confirmed Emotet was the biggest email-based threat in the first quarter of 2019. The popularity of the malware is ...

May 30, 2019

BlueKeep RDP Vulnerability Still Not Patched on Almost 1 Million Devices

The critical, wormable BlueKeep RDP vulnerability (CVE-2019-0708) that was patched by Microsoft on May 14 has still not been addressed on almost 1 million devices, ...

May 23, 2019

Exploit for Zero Day Flaw in Windows Task Scheduler Released Online

Security researcher ‘SandboxEscaper’ has released a PoC exploit for yet another vulnerability in Windows Task Scheduler, just a few days after the latest round of ...

May 22, 2019

More Than 1 Million Machines Still Vulnerable to EternalBlue Exploit

In March 2017, Microsoft released the MS17-010 patch to correct a flaw in Windows Server Message Block (SMB) v1 that was exploited by WannaCry ransomware ...

May 21, 2019

TrickBot Trojan Now Using URL Redirects to Fool End Users and Cybersecurity Solutions

The Trickbot banking Trojan is one of the biggest cyber threats faced by businesses. Trickbot is primarily a banking Trojan that is used to obtain ...

May 17, 2019

International Law Enforcement Operation Shuts Down Goznym Malware Gang

The international criminal gang behind the infamous Goznym malware has been disbanded following a complex law enforcement investigation in Bulgaria, Germany, Georgia, Moldova, Ukraine, and ...

May 14, 2019

WhatsApp Zero Day Vulnerability Actively Exploited to Spy on Users

A WhatsApp zero day vulnerability has been identified which is being exploited to install spyware on users’ devices. The flaw is a buffer overflow vulnerability ...

May 13, 2019

Microsoft SharePoint Server Flaw Actively Exploited in the Wild

A remote code execution vulnerability in Microsoft SharePoint (CVE-2019-0604) is being actively exploited in the wild by multiple threat actors who are leveraging the flaw ...

Previous 1…9 101112 13…18 Next

Free Newsletter

Receive security news directly
via email

Leave this field empty if you're human:

Confidentiality Guaranteed

Email address never shared,
unsubscribe any time

Last Feed

Security Breaches

Former Maryland Pharmacist Indicted Over Alleged Cyber Spying Scheme

Security Breaches

Dove Healthcare Management Services Resolves Data Breach Affecting Patient and Employee Information

OCR Imposes $1,165,000 in HIPAA Penalties on Four Covered Entities

Security Breaches

Brockton Hospital Implements Downtime Procedure After Ransomware Attack

NetSec.News

NetSec is your leading source for the latest updates and insights on IT security. We cover a wide range of topics including security breaches, emerging cyber threats, compliance regulations, industry trends, and best practices. Stay informed and protected with our expertly curated content.

Categories

Trends & Reports

Tools & Practices

Follow us

Newsletter

Leave this field empty if you're human:

Confidentiality Guaranteed. Consult our Privacy Policy.

Editorial charter

Submit Publication

© 2016-2024 NetSec.news. All rights reserved.

Home
Breaches
Threats
Compliance
Trends
Tools
Insights

Subscribe to our free

Newsletter

Latest IT security news directly by email

Leave this field empty if you're human:

* Consult our Privacy Policy

Subscribe to our free

Newsletter

Latest IT security news directly by email

Leave this field empty if you're human:

* Consult our Privacy Policy

Search for: