Author Archives: Lindsey O'Donnell

DHS Urges Pulse Secure VPN Users To Update Passwords

Posted on April 17, 2020 by Lindsey O'Donnell

The DHS urged organizations to update their passwords and make sure that a critical Pulse Secure VPN flaw has been patched, as attackers continue to exploit the flaw. Continue reading DHS Urges Pulse Secure VPN Users To Update Passwords→

Zoom Bombing Attack Hits U.S. Government Meeting

Posted on April 17, 2020 by Lindsey O'Donnell

A recent U.S. House Oversight Committee meeting was the latest victim of Zoom bombing, according to an internal letter. Continue reading Zoom Bombing Attack Hits U.S. Government Meeting→

New PoetRAT Hits Energy Sector With Data-Stealing Tools

Posted on April 16, 2020 by Lindsey O'Donnell

A never-before-seen RAT is targeting Azerbaijan energy companies with various tools aimed at stealing credentials and exfiltrating valuable data. Continue reading New PoetRAT Hits Energy Sector With Data-Stealing Tools→

Cisco IP Phone Harbors Critical RCE Flaw

Posted on April 16, 2020 by Lindsey O'Donnell

Cisco stomped out a critical vulnerability in its IP Phone web server that could enable remote code execution by an unauthenticated attacker. Continue reading Cisco IP Phone Harbors Critical RCE Flaw→

‘Double Extortion’ Ransomware Attacks Spike

Posted on April 16, 2020 by Lindsey O'Donnell

More ransomware operators are setting up pages where they threaten to publish compromised data from victims – an added pressure for victims to pay the ransom. Continue reading ‘Double Extortion’ Ransomware Attacks Spike→

Taxpayers Targeted With Improved NetWire RAT Variant

Posted on April 15, 2020 by Lindsey O'Donnell

Taxpayers are being targeted by a new NetWire RAT variant in a recent malspam campaign that makes use of an improved keylogger and an Excel 4.0 Macro. Continue reading Taxpayers Targeted With Improved NetWire RAT Variant→

Intel Fixes High-Severity Flaws in NUC, Discontinues Buggy Compute Module

Posted on April 15, 2020 by Lindsey O'Donnell

Intel fixed nine high- and medium-severity flaws in its April security update, which could enable privilege escalation and denial of service attacks. Continue reading Intel Fixes High-Severity Flaws in NUC, Discontinues Buggy Compute Module→

Adobe Fixes ‘Important’ Flaws in ColdFusion, After Effects and Digital Editions

Posted on April 14, 2020 by Lindsey O'Donnell

While Adobe’s regularly scheduled security updates were light this month, they fixed “important” severity vulnerabilities. Continue reading Adobe Fixes ‘Important’ Flaws in ColdFusion, After Effects and Digital Editions→

Cyberattacks Target Healthcare Orgs on Coronavirus Frontlines

Posted on April 14, 2020 by Lindsey O'Donnell

Cybercriminals aren’t sparing medical professionals, hospitals and healthcare orgs on the frontlines of the coronavirus pandemic when it comes to cyberattacks, ransomware attacks and malware. Continue reading Cyberattacks Target Healthcare Orgs on Coronavirus Frontlines→

Malware Risks Triple on WFH Networks: Experts Offer Advice

Posted on April 14, 2020 by Lindsey O'Donnell

New research found that almost half of companies had malware on their corporate-associated home networks – in comparison to malware being found on only 13 percent of corporate networks. Continue reading Malware Risks Triple on WFH Networks: Experts Offer Advice→