RPC Vulnerability Stands Out in a Field of 128 in April
Credit to Author: Christopher Budd| Date: Tue, 12 Apr 2022 17:45:37 +0000
This month’s Patch Tuesday is more about quantity than severity, with one flashback-inducing exception
Read morethreat research
RPC Vulnerability Stands Out in a Field of 129 in April
Credit to Author: Christopher Budd| Date: Tue, 12 Apr 2022 17:45:37 +0000
This month’s Patch Tuesday is more about quantity than severity, with one flashback-inducing exception
Read moreAttackers linger on government agency computers before deploying Lockbit ransomware
Credit to Author: Andrew Brandt| Date: Tue, 12 Apr 2022 11:30:45 +0000
Threat actors spent more than five months remotely googling for tools from the target’s machines
Read moreAMA #3: A look behind the curtain at SophosLabs
Credit to Author: Editor| Date: Thu, 07 Apr 2022 09:00:52 +0000
Join us for our live discussion on April 21st at 10 a.m. ET / 15:00 BST
Read moreReconstructing PowerShell scripts from multiple Windows event logs
Credit to Author: Vikas Singh| Date: Tue, 29 Mar 2022 18:27:50 +0000
On the trail of malicious PowerShell artifacts too large to be contained in a single log? Help is on the way.
Read moreHorde of miner bots and backdoors leveraged Log4J to attack VMware Horizon servers
Credit to Author: Gabor Szappanos| Date: Tue, 29 Mar 2022 11:26:28 +0000
In the wake of December 2021 exposure of a remote code execution vulnerability (dubbed “Log4Shell”) in the ubiquitous Log4J Java logging library, we tracked widespread attempts to scan for and exploit the weakness—particularly among cryptocurrency mining bots. The vulnerability affected hundreds of software products, making it difficult for some organizations to assess their exposure. One […]
Read moreCryptoRom Bitcoin swindlers continue to target vulnerable iPhone and Android users
Credit to Author: Jagadeesh Chandraiah| Date: Wed, 16 Mar 2022 11:30:21 +0000
Abuse of iOS TestFlight and WebClips—along with social engineering and lookalike web pages—lead to double- and triple-dipping by criminals into victims’ pockets.
Read moreQakbot injects itself into the middle of your conversations
Credit to Author: Steeve Gaudreault| Date: Thu, 10 Mar 2022 11:00:56 +0000
The heavily distributed botnet delivers a wide variety of payloads – and scans your network for weaknesses
Read moreMicrosoft patches 71 vulnerabilities including RDP Client, Exchange Server, Intune
Credit to Author: Christopher Budd| Date: Tue, 08 Mar 2022 19:06:58 +0000
Just two Critical-class vulnerabilities, but Windows Update doesn’t handle every package this month
Read moreConti and Karma actors attack healthcare provider at same time through ProxyShell exploits
Credit to Author: gallagherseanm| Date: Mon, 28 Feb 2022 12:30:19 +0000
An unpatched Microsoft Exchange Server let both ransomware actors in; Karma just stole data, while Conti encrypted.
Read more