Cyber Threats

March 18, 2022

Feds Issue Security Alert About MFA Bypass and Vulnerability Exploitation

State-sponsored Russian hackers have bypassed multi-factor authentication and exploited the PrintNightmare vulnerability in an attack on a non-governmental organization (NGO), according to a recent security ...

March 3, 2022

Phishing Campaign Capitalizes on Ukrainian Crisis

A new phishing campaign has been detected that piggybacks on the current crisis in Ukraine to trick people into divulging their credentials. Emails are being ...

March 1, 2022

Warnings Issued About Hermetic Wiper with Worm-like Capabilities

A destructive new malware dubbed Hermetic Wiper is being used in cyberattacks in Ukraine and there are fears that there could be spill over into ...

February 28, 2022

TrickBot Trojan Retired as Developers Switch to Stealthier Malware

The TrickBot Trojan has been a major malware threat for the past 6 years but appears to have now been retired. The main developers of ...

February 17, 2022

2021 Was a Record-breaking Year for Vulnerability Disclosures

Risk Based Security has released its 2021 vulnerability report which shows 2021 was a record-breaking year for vulnerability disclosures. 28,695 flaws were disclosed in 2021, ...

February 8, 2022

Next-Gen Phishing Kits Used to Bypass Multifactor Authentication

Proofpoint has revealed cyber threat actors are now using a new class of phishing kit that is allowing them to bypass multi-factor authentication (MFA). Multi-factor authentication ...

February 2, 2022

SEO Poisoning to Distribute Malware Disguised as Legitimate Software Installers

Mandiant has identified a campaign that uses fake software installers for free productivity apps such as Zoom, Team Viewer, and Visual Studio to distribute Batloader, ...

February 1, 2022

Banking Trojan Masquerades as Android Password Security App

A password security app that is available through the Google Play Store that has been downloaded more than 10,000 times is actually a malware dropper ...

February 1, 2022

8 Vulnerabilities Added to CISA’s Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added a further 8 actively exploited vulnerabilities to its Known Exploited Vulnerabilities Catalog. These 8 vulnerabilities are ...

January 18, 2022

DHL Was the Most Imitated Brand in Phishing Campaigns in Q4, 2021

A recent report from the cybersecurity firm Check Point has revealed DHL was the most impersonated brand in phishing attacks in Q4, 2021, overtaking Microsoft. ...

January 11, 2022

Purple Fox Malware Being Delivered Disguised as a Telegram Installer

Threat actors often add malware to software installers, so it is no surprise that researchers at Minerva Labs have discovered installers for legitimate software being ...

December 31, 2021

Redline Malware Used to Steal Passwords from Browsers and Corporate VPNs

Redline malware is now the most commonly used information stealer and is being used in attacks on businesses and consumers. Redline malware first appeared in ...

December 29, 2021

New RCE Vulnerability Patched in Log4j Version 2.17.1

Another remote code execution vulnerability has been identified in the Log4j Java-based logging utility, this time in version 2.17.0. Several vulnerabilities in Log4j have been ...

December 24, 2021

Log4J Vulnerability Scanning Tool Released by CISA

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a scanner that can be used to identify web services affected by the two recently ...

December 23, 2021

3 Million Websites Vulnerable to Critical Vulnerability in All in One SEO WordPress Plugin

Two vulnerabilities have been identified in the All in One SEO plugin for WordPress, that could be chained and exploited allowing a full site takeover. ...

December 16, 2021

APT Actors and Access Brokers Actively Exploiting Log4j Zero-day

Microsoft has issued a warning that multiple threat actors have been scanning for systems that have not had the Log4j zero-day vulnerability (CVE-2021-44228) patched and ...

December 13, 2021

Actively Exploited Log4Shell Vulnerability in Apache Log4j is as Bad as it Gets

A recently discovered vulnerability in the Apache Log4j Java-based logging library is widely considered to be one of the most dangerous vulnerabilities ever to be ...

December 6, 2021

COVID-19 Omicron Phishing Scam Targets UK Residents Offering Free NHS Omicron PCR Test

An COVID-19 Omicron phishing campaign has been detected that spoofs the UK’s National Health Service and attempts to get individuals to disclose sensitive personally identifiable ...

December 3, 2021

Warning Issued About Active Exploitation of Critical Zoho ManageEngine ServiceDesk Plus Vulnerability

At least one APT actor is exploiting a critical vulnerability in the IT helpdesk and asset management solution, Zoho ManageEngine ServiceDesk Plus, according to a ...

November 30, 2021

Vaccine Manufacturers Targeted with Metamorphic Tardigrade Malware

The biomanufacturing sector has been warned about targeted attacks involving Tardigrade malware – a sophisticated metamorphic variant of the SmokeLoader backdoor. Tardigrade malware is known ...

November 25, 2021

New JavaScript Malware Delivers Multiple Rats and Info Stealers

A new JavaScript malware dubbed RATDispenser is being used to deliver at least 8 different Remote Access Trojans (RATs), information stealers, and keyloggers. According to ...

November 23, 2021

PoC Exploit Released for High Severity Microsoft Exchange Server RCE Flaw

A proof-of-concept exploit for a high-severity post-auth vulnerability in Microsoft Exchange Server 2016 and Exchange Server 2019 has been made public. The flaw, tracked as ...

November 19, 2021

APT Actor Actively Exploiting Zero-day Vulnerability in FatPipe MPVPN Devices

The Federal Bureau of Investigation (FBI) has warned users of FatPipe MPVPN devices that an Advanced Persistent Threat (APT) actor is exploiting a zero-day vulnerability ...

November 17, 2021

The Emotet Botnet is Back: TrickBot Infrastructure Being Used to Rebuild the Botnet

The infrastructure of the Emotet botnet was taken down in a Europol/Eurojust coordinated law enforcement operation in January 2021. Since the takedown it has been ...

November 8, 2021

Zoho Password Management Flaw Exploited by APT Actors to Deploy Web Shell, Trojan, and Info Stealer

Security researchers at Palo Alto Networks have identified a global espionage campaign that exploited a known vulnerability in the Zoho password management and single-sign-on platform, ...

November 2, 2021

Amazon SES Token Stolen and Used to Send Phishing Emails from Kaspersky.com Email Accounts

A phishing campaign has been identified that abused a legitimate access token of a third-party contractor to send phishing emails from legitimate Kaspersky.com email accounts. ...

October 25, 2021

NHS Vaccination Proof Phishing Campaign Rife in the UK

Cybercriminals have stepped up their efforts to scam Brits according to new research, with one of the most common scams offering fake proof of COVID-19 ...

October 14, 2021

Phishing Campaign Uses Mathematical Symbols to Fool Email Security Solutions

Analysts at email security firm INKY have identified a new phishing campaign that uses mathematical symbols in spoofed corporate logos in an attempt to fool ...

October 12, 2021

Microsoft Fixes 74 Vulnerabilities on October Patch Tuesday, Including 1 Actively Exploited 0Day

October 2021 Patch Tuesday has seen Microsoft release fixes for 74 vulnerabilities across its product range with an additional 7 fixes for issues with Microsoft ...

October 12, 2021

Apple Releases Emergency Update to Fix Another Actively Exploited iOS Zero-day

Apple has released a patch to fix a zero-day vulnerability in iOS 15 and iPadOS 15 that is being actively exploited in the wild. The ...

Previous 1…3 456 7…18 Next

.st1{display:none}Cyber Threats

Cyber Threats