Collaborate Disseminate
Zero-day bug in MSHTML, the “mini-Internet Explorer” component of Windows, triggered by booby trapped Office files. Continue reading Windows zero-day MSHTML attack – how not to get booby trapped!
We are seeing massive changes with the Trickbot delivery campaign overnight. I have only seen 1 mention on Twitter about this campaign and 1 on a private malware research mailing list, so it can’t be affecting too many recipients. This example i… Continue reading Trickbot via fake Efax message using Squiblydoo, Active X, macro and abusing pastebin
Changes in the group’s script may indicate that the hackers may start using attack vectors other than ActiveX. Continue reading Recent Andariel Group ActiveX Attacks Point to Future Targets
I sometimes work from home and my company allows use of connecting to their network through an SSL VPN product called Check Point Endpoint Security On Demand.
It’s always worked using IE11. Firefox and Chrome have never work… Continue reading IE11 crashing when using Checkpoint Endpoint Security On Demand [on hold]
I sometimes work from home and my company allows use of connecting to their network through an SSL VPN product called Check Point Endpoint Security On Demand.
It’s always worked using IE11. Firefox and Chrome have never work… Continue reading IE11 crashing when using Checkpoint Endpoint Security On Demand [on hold]
Microsoft releases a total of 57 security patches, part of its July Patch Tuesday, with 20 rated critical. Continue reading Microsoft Patch Tuesday Update Fixes 19 Critical Vulnerabilities
FireEye said threat actors are using the NSA’s EternalBlue exploit of the same Microsoft SMBv1 vulnerability as WannaCry to spread Nitol and Gh0st RAT. Continue reading EternalBlue Exploit Spreading Gh0st RAT, Nitol
The Terror exploit kit has matured into a greater threat and carefully crafts attacks based on a user’s browser environment. Continue reading Terror Exploit Kit Evolves Into Larger Threat