Barracuda warns of email gateways breached via zero-day flaw
The company advises organizations to review their environments to confirm the threat actors did not spread to other devices on the network
Read More...
New Cactus ransomware encrypts itself to evade antivirus
Researchers found that Cactus obtains initial access into the victim network by exploiting known vulnerabilities in Fortinet VPN appliances
Read More...
IRS-authorized eFile.com tax return software caught serving JS malware
Security researchers state the malicious JavaScript file existed on eFile[.]com website for weeks
Read More...
New AlienFox toolkit steals credentials for 18 cloud services
Threat actors use AlienFox to collect lists of misconfigured cloud endpoints from security scanning platforms like LeakIX and SecurityTrails
Read More...
Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware
This proves that no open-source repository is safe from malicious actors.
Read More...
CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems
Successful exploitation of these vulnerabilities could allow an unauthenticated attacker to obtain access to files and credentials, escalate privileges, and remotely execute arbitrary code
Read More...
Large-Scale Use of Phishing Kits Sends Millions of Emails Daily
Such attacks are more effective because they circumvent multi-factor authentication (MFA) protections
Read More...
Critical Microsoft Outlook bug is easy exploitable
The issue is a privilege escalation vulnerability with a 9.8 severity rating affecting all Microsoft Outlook versions on Windows
Read More...
SonicWall devices infected by malware that survives firmware upgrades
The deployed malware is customized for SonicWall devices and is used to steal user credentials, provide shell access to the attackers, and even persist through firmware upgrades
Read More...
How to Prevent Callback Phishing Attacks
A combination of targeted security tools and a strong cybersecurity culture is the dual approach organizations can use to protect their network from an attack
Read More...