Cyber Threats

November 11, 2020

Use of SSL Certificates in Malware and Phishing Attacks Up 260% in 2020

Abuse of SSL certificates in phishing and malware attacks has increased by 260% in the first 9 months of 2020, according to a new report ...

November 6, 2020

Three Actively Exploited Zero Days in the iOS Operating System Patched by Apple

Patches have been released to correct three zero-day vulnerabilities in the iOS operating systems that are currently being exploited in the wild. The vulnerabilities affect ...

November 4, 2020

Zero-Day Windows Flaw Allowing Sandbox Escape Being Actively Exploited in the Wild

Google Project Zero has disclosed a high severity Windows vulnerability that has yet to be patched by Microsoft after the flaw was observed being exploited ...

October 27, 2020

Finnish Psychotherapy Provider and Patients Blackmailed and Threatened with Publication of Sensitive Data

A national network of psychotherapy clinics in Finland has suffered a cyberattack in which highly sensitive patient data were stolen. The company was issued with ...

October 23, 2020

Phishing Campaign Spoofs Microsoft Teams

A large-scale phishing campaign is being conducted that spoofs Microsoft Teams in an attempt to get users to part with their Microsoft Office 365 credentials. ...

October 16, 2020

Silent Librarian Threat Group Recommenced Spear Phishing Campaign on Universities

The Silent Librarian hacker group – aka TA407 – has recommenced a spear phishing campaign targeting universities. The hacking group is known for sending spear ...

October 13, 2020

Coalition of Tech Firms Takedown TrickBot Botnet

The backend infrastructure of the TrickBot botnet has been taken down by a coalition of tech companies and government agencies, including Microsoft ESET, NTT, Black ...

October 9, 2020

Multiple Threat Groups are Exploiting the Microsoft Zerologon Vulnerability

Microsoft has issued a warning following the discovery of multiple threat groups using exploits for the Zerologon vulnerability – CVE-2020-1472 – in the core authentication ...

October 8, 2020

Male Chastity Device Vulnerability Could be Exploited to Cause Permanent Locking

Vulnerabilities have been identified in a male chastity device that could be exploited to cause the device to permanently lock. Should that happen, and you ...

October 8, 2020

Phishing Campaign Offering Inside Info on President Trump’s COVID Diagnosis and Health

Phishers commonly use lures claiming to provide further information on topics that are attracting a lot of media attention. At the start of the coronavirus ...

September 24, 2020

Zerologon Exploits Now Being Used in the Wild, Warns Microsoft

Earlier this month, the DHS Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive about a critical vulnerability— CVE-2020-1472—that affected Microsoft Windows Netlogon Remote Protocol ...

September 16, 2020

Billions of Devices Vulnerable to ‘BLESA’ Bluetooth Spoofing Vulnerability

A vulnerability has been discovered in the Bluetooth Low Energy (BLE) reconnection process that could be exploited by an attacker to bypass the reconnection authentication ...

September 15, 2020

Phishing Campaign Uses Real Time Active Directory Validation of Credentials

A new phishing technique has been identified where the attackers validate Office 365 credentials in real time using Active Directory. One of the problems with ...

September 10, 2020

Almost a Quarter UK Corporate-Owned Computers and Smartphones Have No Antivirus Software Installed

A worrying percentage of businesses are not adequately protecting the devices they issue to their employees, according to new research commissioned by Kaspersky. Kaspersky commissioned ...

September 3, 2020

New Cryptocurrency Stealing KryptoCibule Malware Family Identified

For the past two years, a cryptocurrency-stealing malware named KryptoCibule has been used to mine cryptocurrency on victims’ machines, steal cryptocurrency wallets, and hijack transactions. ...

September 1, 2020

Phishing Campaign Offering PPE Delivers Agent Tesla RAT

Researchers at Area 1 Security have identified a phishing scam that spoofs legitimate chemical companies, exporters and importers to deliver the Agent Tesla Remote Access ...

August 28, 2020

New Version of Qbot Trojan Can Hijack Email Threads

Check Point researchers have identified a new version of the Qbot Trojan, a malware threat that first appeared 12 years ago. Qbot is an information ...

August 21, 2020

New “FritzFrog” P2P Botnet Targeting SSH Servers of Banks, Medical Centers, Government Offices and Universities

A new, sophisticated, and stealthy peer-to-peer (P2P) botnet named FritzFrog has been discovered which is being used to target SSH servers. The botnet was identified ...

August 17, 2020

CISA Warns of Phishing Campaign Targeting SBA Loan Accounts

The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert about an ongoing phishing campaign against government agencies that ...

July 28, 2020

Vulnerability in Cisco’s Network Security Products Being Actively Exploited

A high severity flaw in Cisco’s network security products is now being actively exploited. The vulnerability is present in the Cisco products used by many ...

July 27, 2020

Critical Vulnerability in F5 Networks BIG-IP Devices Exploited in Real-World Attacks

On Friday, July 24, 2020, the DHS Cybersecurity and Infrastructure Security Agency (CISA) warned that hackers have started exploiting the CVE-2020-5902 vulnerability in F5 Networks BIG-IP ...

July 20, 2020

Emotet Botnet Springs Back to Life with Massive Malspam Campaign

The Emotet botnet has sprung back to life after a 5-month break and is being used to send large volumes of spam emails containing malicious ...

July 10, 2020

95% of Brits Unable to Correctly Distinguish Phishing and Genuine Messages

A recent phishing study conducted by the UK firm, Computer Disposals Limited, has revealed British workers struggle to identify phishing attacks, with only 5% of ...

July 9, 2020

Microsoft Research Develops Undetectable Malware Scanner for Virtual Machines

Many businesses have replaced traditional desktops with virtual machines located in the cloud. Each virtual machine is an exact replica of a standard desktop complete ...

July 7, 2020

Purple Fox Trojan Developers Create Their Own Exploit Kit and Add Two New Microsoft Exploits

The developers of the Purple Fox Trojan/rootkit have created their own exploit kit to distribute their malware and have recently added exploits for two recently ...

July 1, 2020

Warning Issued Over Maximum Severity Vulnerability in Palo Alto Networks Products

U.S. Cyber Command has issued a warning about a maximum severity vulnerability in the Palo Alto Networks’ operating system. While the flaw is not currently ...

June 30, 2020

Philips Ultrasound Systems Vulnerability Discovered

An authentication bypass vulnerability affecting Philips Ultrasound Systems that could targeted by a hacker to view or modify data has been discovered. The flaw is ...

June 11, 2020

Fake COVID-19 Contact Tracing Apps Used to Install Malware

Contact tracing and exposure notification apps are being developed in several countries to help control outbreaks of COVID-19. The apps have already been used in ...

June 4, 2020

TrickBot Trojan Operators Delivering New BazarBackdoor Malware via Phishing Campaign

The TrickBot Trojan operators are distributing a new backdoor named BazarBackdoor in targeted phishing attacks on businesses. BazarBackdoor is a stealthy backdoor that gives the ...

May 27, 2020

Turla Hacking Group Tweaks ComRAT Malware to Steal Antivirus Logs and Communicate via Gmail

One of the most advanced state-sponsored hacking groups in Russia – Turla – has tweaked its ComRAT malware to steal antivirus logs and communicate with ...

Previous 1…6 789 10…18 Next

.st1{display:none}Cyber Threats

Cyber Threats