Ransomware actors are getting greedier, and another proof for that statement is the latest ransom demanded by the Netwalker group. The most recent high profile attack carried out by Netwalker ransomware is against Equinix, where clients’ data was encrypted. NetWalker…
Low-income users who have obtained a phone from the government-funded Lifeline program have reported that their devices have been overrun by malware. It appears that the issued phones have been known to push intrusive pop-up ads which are often categorized…
Computer security researchers discovered a major vulnerability in the Intel Active Management technology allowing hackers to gain privilege escalation. This is a feature that is used to carry out remote control access to machines. This issue has recently been patched…
Microsoft Outlook credentials are being actively hijacked from users that have fallen for a dangerous active phishing campaign. The hackers behind it are using advanced elements such as overlay screens and policies in order to manipulate the victims into typing…
A security researcher has discovered that Windows 10 themes can be used to steal users’ data using a technique called pass-the-hash. This is possible to a loophole found in the operating system that is used to allow the loading of…
Payment card data issued by major banks and organizations are constantly the target of computer criminals using different hacking methods. However, the Visa payment cards have been found to be vulnerable to a new kind of attack categorized as a…
A new report shows that computer criminals are actively using the Binance platform in order to exchange the cryptocurrency received from ransomware blackmail fees. This is being done by large hacking groups and despite the exchange’s policy of not allowing…
The DeathStalker hacking group is a recently discovered malware group which has been found to infiltrate small and medium business companies across the world. The research shows that their primary focus is on establishments that operate in the financial sector.…
Computer security experts have discovered that a previously unknown hacking group from Iran are using the CVE-2017-0213 exploit to target RDP servers and implant Dharma ransomware samples. This is one of the most popular virus family and numerous strains of…
A security researcher recently discovered and reported a Google Drive vulnerability which could lead to malware attacks. The bug is unpatched and could allow threat actors to spread malicious files masqueraded as legitimate documents or images. Further, this could then…
Another case of an organization paying ransom to cybercriminals has been registered. The University of Utah in the United States just revealed that it paid a ransom in the amount of $457,059. The reason for the payment is that cybercriminals…
Microsoft Defender, the security suite which guards the Windows operating system has received an important update which will prevent software and programs to disable it via the Windows Registry. To this date this functionality was present in the application’s core…
Have you noticed an out-of-band security update on your Windows? The patch is an emergency update which fixes privilege escalation vulnerabilities (CVE-2020-1530, CVE-2020-1537) that affect the Windows Remote Access service in Windows 8.1 and Windows Server 2012 R2 (KB4578013). CVE-2020-1530,…
USA Government agencies have revealed a new virus originating from North Korea called the BLINDINGCAN malware which is categorized as a backdoor Trojan. The American authorities have discovered it in an Internet campaign which was captured by the Cybersecurity and…
Security researchers recently discovered a sophisticated P2P (peer-to-peer) botnet that has carried out attacks against at least 500 government and enterpise SSH servers throughout 2020. Dubbed FritzFrog, the botnet was detected by Guardicore Labs in January. Apparently, the botnet has…
The Duri attack campaign which has been launched by an unknown hacking group has revealed that cybercriminals have devised a new intrusion technique – HTML smuggling. It allows hackers to distribute dangerous payloads by utilizing detection evasion by security features.…
A newly added feature in a previously known cryptomining operation is targeting AWS credentials, according to a report by security firm Cado Security. The malware group behind this new campaign is known as TeamTNT, a cybercrime group which has been…
Computer security researchers have created an exploit and subsequently a killswitch (dubbed EmoCrash) to prevent the Emotet malware from spreading. This is one of the most common and dangerous virus infections as they are being spread via botnet networks of…
The CVE-2020-1464 vulnerability was part of the 120 security flaws addressed in August’s Patch Tuesday. This vulnerability particularly stands out as it was actively expoited in malicious attacks for at least two years before Microsoft fixed it. What Is CVE-2020-1464?…
A dangerous Linux malware called Drovorub has been recently discovered to be an espionage tool used by Russian hackers in attack campaigns. Recent news about it reveals that the scope of the intrusions might be particularly high-impact. Details about it…
