News
News (2850)
Friday, 09 June 2023 11:18
MOVEit Zero-Day May Have Been Known by Threat Groups Since 2021
Written by Sean Kalinich
In today’s episode of why we need to change how we do things; it has come to light that the critical MOVEit zero-day that allowed complete control over targeted file transfer platforms may have been identified by the Cl0p ransomware…
Read 1015 times
Published in
News
Thursday, 08 June 2023 16:03
Bring on the Ransomware Beta Test as Royal Begins Seems to be testing a New Encryptor called BlackSuit
Written by Sean Kalinich
The fine folks at the Royal ransomware group have begun testing a new flavor of encryptor that is being called BlackSuit (The hat was already taken). First identified in January of this year (2023), Royal is believed to be Conti…
Read 1310 times
Published in
News
Thursday, 08 June 2023 15:12
Google and Microsoft Share a Zero Day as both Chrome and Edge get Patch Now Guidance.
Written by Sean Kalinich
Google has pushed out a new patch for Chrome to deal with a zero-day vulnerability tracked as CVE-2023-3079. In the patch release Google is clear that this vulnerability is actively being exploited in the wild and that users of both…
Read 1508 times
Published in
News
Thursday, 08 June 2023 12:33
Barracuda Email Security Gateway Appliances that were Exploited due to Zero-Day Must Be Replaced, not Patched
Written by Sean Kalinich
After the disclosure of a serious Zero-Day that allowed an unauthenticated user to basically own the device. Barracuda is now saying that remediation action for any device that was compromised is a full replacement regardless of the firmware version. It…
Read 716 times
Published in
News
Wednesday, 07 June 2023 15:24
Minecraft Mods stuffed with Malware Used to Target Windows and Linux
Written by Sean Kalinich
As we hear more about Supply Chain attacks and the need for Software Build of Materials we are now hearing of an attack on the popular game, Minecraft. It seems that attackers are leveraging popular Modding platforms to push out…
Read 1373 times
Published in
News
Wednesday, 07 June 2023 14:24
Sextortionists Get a Boost from AI and Publicly Available Images
Written by Sean Kalinich
As if the internet needed something else bad floating around it seems that groups that engage in extortion schemes involving the threat of releasing images of a sexual nature are now getting help from AI image creation tools. Sextortion emails…
Read 618 times
Published in
News
Wednesday, 07 June 2023 13:31
New PowerShell Malware Dubbed PowerDrop used to Target US Aerospace Industry
Written by Sean Kalinich
It is Wednesday, so it is about time to talk about a new strain of malware. In this case one that leverages Microsoft’s PowerShell to do its dirty work. Primarily a post-exploitation tool, PowerDrop is leveraged after access is obtained…
Read 779 times
Published in
News
Tuesday, 06 June 2023 15:08
More Ransomware as a Service Fun as Cyclops Gang Now Offers Value Add Information Stealer
Written by Sean Kalinich
Anyone that does not think that cybercrime is now a bug business has been living under a rock. The news related to different cybercrime-as-a-service groups, especially ransomware, has never been more frequent. We have seen groups offer larger profit sharing,…
Read 919 times
Published in
News
Monday, 05 June 2023 15:10
Attackers Drop Card Stealing Scripts into Legitimate eCommerce Sites
Written by Sean Kalinich
So, there you are, you have found the one thing in all the internet that will make your object drive life complete. You put the fabulous object into your cart, giddily fumble out your credit card and enter those embossed…
Read 1232 times
Published in
News
Monday, 05 June 2023 11:12
MOVEit Transfer Zero Day gets added to the KEV and a Cool New Web Shell
Written by Sean Kalinich
Spring, the time of renewal, the time when nature wakes up. It is also a time when Zero-Day flaws hit the web. This year has been no different with many Zero-Day flaws identified in April and May 2023. The reasons…
Read 738 times
Published in
News
Monday, 05 June 2023 10:20
Google’s Verification Feature in Gmail already Abused by Scammers and Phishers
Written by Sean Kalinich
The news that a feature in Gmail that shows a verification check mark for a sender is being abused by attackers should come as a surprise to no one. After all attackers have coopted, code singing certificates, legitimate web sites,…
Read 1523 times
Published in
News
Friday, 02 June 2023 14:46
New APT Group targeting iOS Users with Zero-Click Malware, US gets the Blame
Written by Sean Kalinich
There is a new bit of malware targeting iOS users via iMessage from what appears to be a new APT (Advanced Persistent Threat) group. The campaign appears to have been in play since some time in 2019. The malware, according…
Read 907 times
Published in
News
Friday, 02 June 2023 12:01
32 Malicious Google Chrome Extensions Removed from the Chrome Web Store
Written by Sean Kalinich
Google’s Chrome (and derivatives) is one of the more popular browsers on the market. It reached the height of popularity via a well-orchestrated marketing push, dissatisfaction with Microsoft, and being one of the faster and more secure browsers (at the…
Read 1404 times
Published in
News
Thursday, 01 June 2023 13:41
RaaS group Updates their Software with Better Performance and Stealthy Features
Written by Sean Kalinich
The group behind BlackCat ransomware seem to be following some good business practices as they have launched a new variant with improved performance (faster encryption) and detection evasion. First identified in February of 2023 the new variant has been given…
Read 890 times
Published in
News
Thursday, 01 June 2023 08:26
Claimed EDR Killer Found to be a Vulnerable AV Driver Similar to Past Evasion Techniques
Written by Sean Kalinich
A couple of days ago an email was sent to me about a new tool kit being sold on the darker side of the internet. The claim what that this new tool could kill the processes behind “any” AV, EDR,…
Read 683 times
Published in
News
Wednesday, 31 May 2023 16:51
Gigabyte Shipped Millions of Motherboards with a Massively Insecure UEFI Patch Function
Written by Sean Kalinich
This one goes in both the “failure of imagination” and “this is why we can’t have nice things” category. It seems that Gigabyte, for some reason, decided to embed an insecure update function into the UEFI BIOS of their motherboards,…
Read 521 times
Published in
News
Page 2 of 179