Collaborate Disseminate
Threat actors target Office 365 and Google Workspace in a new campaign, which uses a legitimate domain associated with a road-safety center in Moscow to send messages. Continue reading Attackers Spoof WhatsApp Voice-Message Alerts to Steal Info
This fresh malware strain extends the functionality of typical trojans with advanced functionality and a series of modules for launching various types of threat activity. Continue reading No-Joke Borat RAT Propagates Ransomware, DDoS
The vulnerabilities could allow threat actors to disrupt or access kernel activity and may be under active exploit.
Continue reading Apple Rushes Out Patches for 0-Days in MacOS, iOS
QNAP is warning clients that a recently disclosed vulnerability affects most of its NAS devices, with no mitigation available while the vendor readies a patch.
Continue reading QNAP Customers Adrift, Waiting on Fix for OpenSSL Bug
A Ukrainian-based threat actor is spearphishing Russians who are using services that have been banned by the Kremlin.
Continue reading MSHTML Flaw Exploited to Attack Russian Dissidents
The ever-evolving malware shows off new tactics that use email thread hijacking and other obfuscation techniques to provide advanced evasion techniques.
Continue reading Exchange Servers Speared in IcedID Phishing Campaign
Two separate campaigns from different threat actors targeted users with the same exploit kit for more than a month before the company fixed an RCE flaw found in February. Continue reading Google Chrome Zero-Day Bugs Exploited Weeks Ahead of Patch
Threat actors are impersonating such wildly popular personal-finance apps (which are used more than social media or streaming services) to try to fool people into giving up their credentials.
Continue reading Tax-Season Scammers Spoof Fintechs, Including Stash, Public
A new steady stream of attacks against network-attached storage devices from the Taiwan-based vendor is similar to a wave that occurred in January. Continue reading DeadBolt Ransomware Resurfaces to Hit QNAP Again
An unusual attack using an open-source Python package installer called Chocolatey, steganography and Scheduled Tasks is stealthily delivering spyware to companies. Continue reading Serpent Backdoor Slithers into Orgs Using Chocolatey Installer