New Cactus ransomware encrypts itself to evade antivirus
Researchers found that Cactus obtains initial access into the victim network by exploiting known vulnerabilities in Fortinet VPN appliances
Read More...
Hackers start using double DLL sideloading to evade detection
These attack variations begin with an initial vector that leverages a clean application that sideloads a second-stage payload which in turn, sideloads a malicious malware loader DLL
Read More...
Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now
Improper error message handling in some firewall versions could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device
Read More...
Google ads push BumbleBee malware used by ransomware gangs
Considering that the trojanized software is targeting corporate users, infected devices make candidates for the beginning of ransomware attacks
Read More...
Ransomware gangs abuse Process Explorer driver to kill security software
The drivers can run with kernel privileges on the victims' devices to disable security solutions and take over the system
Read More...
Microsoft SQL servers hacked to deploy Trigona ransomware
The MS-SQL servers are being breached via brute-force or dictionary attacks that take advantage of easy-to-guess account credentials
Read More...
Google Chrome Hit by Second Zero-Day Attack – Urgent Patch Update Released
It allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page
Read More...
LockBit Ransomware Now Targeting Apple macOS Devices
Threat actors behind the LockBit ransomware operation have developed new artifacts that encrypt files on devices running Apple's macOS operating system
Read More...
Google Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability
Tracked as CVE-2023-2033, the high-severity vulnerability has been described as a type confusion issue in the V8 JavaScript engine
Read More...
Microsoft Issues Patches for 97 Flaws, Including Active Ransomware Exploit
The security flaw under active exploitation is CVE-2023-28252 (CVSS score: 7.8), a privilege escalation bug in the Windows Common Log File System (CLFS) Driver
Read More...