threat actors – Page 2 – WindowsTechs.com

Combating Sleeper Threats With MTTD

Posted on April 16, 2021 by Koen Van Impe

During the SolarWinds Orion supply chain compromise, threat actors lurked in the victim’s network for more than a year. Discovered by FireEye in December 2020, the earliest traces of a modified SolarWinds Orion go back as early as October 2019. Although these early versions did not contain the malicious backdoor (this was added in March […]

The post Combating Sleeper Threats With MTTD appeared first on Security Intelligence.

Continue reading Combating Sleeper Threats With MTTD→

FBI Warns of Egregor Attacks on Businesses Worldwide

Posted on January 8, 2021 by Elizabeth Montalbano

The agency said the malware has already compromised more than 150 organizations and provided insight into its ransomware-as-a-service behavior. Continue reading FBI Warns of Egregor Attacks on Businesses Worldwide→

Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack

Posted on January 6, 2021 by Elizabeth Montalbano

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. Continue reading Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack→

Sextortionist Campaign Targets iOS, Android Users with New Spyware

Posted on December 16, 2020 by Elizabeth Montalbano

Goontact lures users of illicit sites through Telegram and other secure messaging apps and steals their information for future fraudulent use. Continue reading Sextortionist Campaign Targets iOS, Android Users with New Spyware→

RDPalooza: RDPs in the World of Cybercrime

Posted on December 7, 2020 by Blueliv Labs

Key Points Remote Desktop Protocol (RDP) is a built-in part of the Windows toolkit popular for facilitating remote work. Cybercriminals take interest in compromising RDP endpoints as they provide direct access into a victim environment via a graphic… Continue reading RDPalooza: RDPs in the World of Cybercrime→

iPhone Bug Allowed for Complete Device Takeover Over the Air

Posted on December 2, 2020 by Elizabeth Montalbano

Researcher Ian Beer from Google Project Zero took six months to figure out the radio-proximity exploit of a memory corruption bug that was patched in May. Continue reading iPhone Bug Allowed for Complete Device Takeover Over the Air→

Magecart Attack Convincingly Hijacks PayPal Transactions at Checkout

Posted on December 1, 2020 by Elizabeth Montalbano

New credit-card skimmer uses postMessage to make malicious process look authentic to victims to steal payment data. Continue reading Magecart Attack Convincingly Hijacks PayPal Transactions at Checkout→

TurkeyBombing Puts New Twist on Zoom Abuse

Posted on November 27, 2020 by Elizabeth Montalbano

Threat actors already stole nearly 4,000 credentials before the holiday was even over, according to report. Continue reading TurkeyBombing Puts New Twist on Zoom Abuse→

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

Posted on November 19, 2020 by Elizabeth Montalbano

Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks. Continue reading APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies→

Apple Patches Bugs Tied to Previously Identified Zero-Days

Posted on November 6, 2020 by Elizabeth Montalbano

The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices. Continue reading Apple Patches Bugs Tied to Previously Identified Zero-Days→