Author Archives: Ravie Lakshmanan

An information-stealing malware called Amadey is being distributed by means of another backdoor called SmokeLoader.
The attacks hinge on tricking users into downloading SmokeLoader that masquerades as software cracks, paving the way for the deployment… Continue reading SmokeLoader Infecting Targeted Systems with Amadey Info-Stealing Malware→

Microsoft is now taking steps to prevent Remote Desktop Protocol (RDP) brute-force attacks as part of the latest builds for the Windows 11 operating system in an attempt to raise the security baseline to meet the evolving threat landscape.
To that end… Continue reading Microsoft Adds Default Protection Against RDP Brute-Force Attacks in Windows 11→

An unknown Chinese-speaking threat actor has been attributed to a new kind of sophisticated Unified Extensible Firmware Interface (UEFI) firmware rootkit called CosmicStrand.
“The rootkit is located in the firmware images of Gigabyte or ASUS motherboa… Continue reading Experts Uncover New ‘CosmicStrand’ UEFI Firmware Rootkit Used by Chinese Hackers→

Three restaurant ordering platforms MenuDrive, Harbortouch, and InTouchPOS were the target of two Magecart skimming campaigns that resulted in the compromise of at least 311 restaurants.
The trio of breaches has led to the theft of more than 50,000 pa… Continue reading Magecart Hacks Food Ordering Systems to Steal Payment Data from Over 300 Restaurants→

The mobile threat campaign tracked as Roaming Mantis has been linked to a new wave of compromises directed against French mobile phone users, months after it expanded its targeting to include European countries.
No fewer than 70,000 Android devices ar… Continue reading Roaming Mantis Financial Hackers Targeting Android and iPhone Users in France→

Network security company SonicWall on Friday rolled out fixes to mitigate a critical SQL injection (SQLi) vulnerability affecting its Analytics On-Prem and Global Management System (GMS) products.
The vulnerability, tracked as CVE-2022-22280, is rated… Continue reading SonicWall Issues Patch for Critical Bug Affecting its Analytics and GMS Products→

Microsoft has officially resumed blocking Visual Basic for Applications (VBA) macros by default across Office apps, weeks after temporarily announcing plans to roll back the change.
“Based on our review of customer feedback, we’ve made updates to both… Continue reading Microsoft Resumes Blocking Office VBA Macros by Default After ‘Temporary Pause’→

Google on Thursday said it’s backtracking on a recent change that removed the app permissions list from the Google Play Store for Android across both the mobile app and the web.
“Privacy and transparency are core values in the Android community,” the … Continue reading Google Bringing the Android App Permissions Section Back to the Play Store→

Ukrainian radio operator TAVR Media on Thursday became the latest victim of a cyberattack, resulting in the broadcast of a fake message that President Volodymyr Zelenskyy was seriously ill.
“Cybercriminals spread information that the President of Ukra… Continue reading Ukrainian Radio Stations Hacked to Broadcast Fake News About Zelenskyy’s Health→

The actively exploited but now-fixed Google Chrome zero-day flaw that came to light at the start of this month was weaponized by an Israeli spyware company and used in attacks targeting journalists in the Middle East.
Czech cybersecurity firm Avast li… Continue reading Candiru Spyware Caught Exploiting Google Chrome Zero-Day to Target Journalists→