Category Archives: Check Point

Cybercriminals used a gaming engine to create undetectable malware loader

Posted on by

Threat actors are using an ingenious new way for covertly delivering malware to a wide variety of operating systems and platforms: they have created a malware loader that uses Godot Engine, an open-source game engine. The loader – dubbed GodLoade… Continue reading Cybercriminals used a gaming engine to create undetectable malware loader

Infostealers increasingly impact global security

Posted on by

Check Point Software’s latest threat index reveals a significant rise in infostealers like Lumma Stealer, while mobile malware like Necro continues to pose a significant threat, highlighting the evolving tactics used by cybercriminals across the globe…. Continue reading Infostealers increasingly impact global security

SEC fines tech companies for misleading SolarWinds disclosures

Posted on by

The Securities and Exchange Commission charged four current and former public companies – Unisys Corp., Avaya Holdings Corp., Check Point Software Technologies Ltd, and Mimecast Limited – with making materially misleading disclosures regarding cybersec… Continue reading SEC fines tech companies for misleading SolarWinds disclosures

Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)

Posted on by

CVE-2024-43461, a spoofing vulnerability affecting Windows MSHTML – a software component used by various apps for rendering render web pages on Windows – “was exploited as a part of an attack chain relating to CVE-2024-38112, prior to… Continue reading Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)

Adobe completes fix for Reader bug with known PoC exploit (CVE-2024-41869)

Posted on by

Among the security updates released by Adobe on Tuesday are those for various versions of Adobe Acrobat and Reader, which fix two critical flaws that could lead to arbitrary code execution: CVE-2024-45112 and CVE-2024-41869. Nothing in the advisory poi… Continue reading Adobe completes fix for Reader bug with known PoC exploit (CVE-2024-41869)

Check Point to Acquire External Cyber Risk Management Firm Cyberint

Posted on by

Check Point says the acquisition will enhance its own SOC capabilities and expand its managed threat intelligence offerings.
The post Check Point to Acquire External Cyber Risk Management Firm Cyberint appeared first on SecurityWeek.
Continue reading Check Point to Acquire External Cyber Risk Management Firm Cyberint

Network of ghost GitHub accounts successfully distributes malware

Posted on by

Check Point researchers have unearthed an extensive network of GitHub accounts that they believe provides malware and phishing link Distribution-as-a-Service. Set up and operated by a threat group the researchers dubbed as Stargazer Goblin, the “… Continue reading Network of ghost GitHub accounts successfully distributes malware

Void Banshee APT exploited “lingering Windows relic” in zero-day attacks

Posted on by

The zero-day exploit used to leverage CVE-2024-38112, a recently patched Windows MSHTML vulnerability, was wielded by an APT group dubbed Void Banshee to deliver malware to targets in North America, Europe, and Southeast Asia, threat hunters with Trend… Continue reading Void Banshee APT exploited “lingering Windows relic” in zero-day attacks

Zero-day patched by Microsoft has been exploited by attackers for over a year (CVE-2024-38112)

Posted on by

CVE-2024-38112, a spoofing vulnerability in Windows MSHTML Platform for which Microsoft has released a fix on Tuesday, has likely been exploited by attackers in the wild for over a year, Check Point researcher Haifei Li has revealed. “Check Point… Continue reading Zero-day patched by Microsoft has been exploited by attackers for over a year (CVE-2024-38112)