SophosLabs Uncut – Page 2 – PossibleThreat Articles

Malicious Word doc taps previously unknown Microsoft Office vulnerability

May 30, 2022 0 Comments featured, follina, Microsoft Office, ms-msdt, msdt, msdt.exe, SophosLabs Uncut, threat research, vulnerability, zero day

Credit to Author: Andrew Brandt| Date: Tue, 31 May 2022 00:41:42 +0000

MSDT.exe misuse in May makes for Memorial Day Monday mayhem

Security Sophos

Liquidity mining scams add another layer to cryptocurrency crime

May 17, 2022 0 Comments cryptocurrency, featured, liquidity mining, scams, SophosLabs Uncut, threat research

Credit to Author: gallagherseanm| Date: Tue, 17 May 2022 11:52:33 +0000

Organized rings use fake apps, malicious smart contracts, and lure of big returns to swindle victims out of their savings.

Security Sophos

Hyper-V and Active Directory Front and Center for May Patch Tuesday

May 10, 2022 0 Comments Hyper-V, Microsoft, Patch Tuesday, SophosLabs Uncut, threat research, Windows

Credit to Author: Christopher Budd| Date: Tue, 10 May 2022 17:47:43 +0000

Organizations should look at last month’s and this month’s bulletins and put their Hyper-V and Active Directory servers and infrastructure at the top of the priority list.

Security Sophos

Attacking Emotet’s Control Flow Flattening

May 4, 2022 0 Comments emotet, obfuscation, secops, SophosLabs Uncut

Credit to Author: Angela Gunn| Date: Wed, 04 May 2022 14:01:08 +0000

Sweeping aside one obfuscation technique in a notorious strain of malware

Security Sophos

RPC Vulnerability Stands Out in a Field of 128 in April

April 12, 2022 0 Comments 2022-04, Patch Tuesday, SophosLabs Uncut, threat research

Credit to Author: Christopher Budd| Date: Tue, 12 Apr 2022 17:45:37 +0000

This month’s Patch Tuesday is more about quantity than severity, with one flashback-inducing exception

Security Sophos

RPC Vulnerability Stands Out in a Field of 129 in April

April 12, 2022 0 Comments 2022-04, Patch Tuesday, SophosLabs Uncut, threat research

Credit to Author: Christopher Budd| Date: Tue, 12 Apr 2022 17:45:37 +0000

This month’s Patch Tuesday is more about quantity than severity, with one flashback-inducing exception

Security Sophos

CryptoRom Bitcoin swindlers continue to target vulnerable iPhone and Android users

March 16, 2022 0 Comments cryptocurrency fraud, cryptorom, fake apps, fake crypto, featured, iphone malware, SophosLabs Uncut, threat research

Credit to Author: Jagadeesh Chandraiah| Date: Wed, 16 Mar 2022 11:30:21 +0000

Abuse of iOS TestFlight and WebClips—along with social engineering and lookalike web pages—lead to double- and triple-dipping by criminals into victims’ pockets.

Security Sophos