Malspam Campaign Milks Election Uncertainty
Emails try to lure victims with malicious documents claiming to have information about voting interference. Continue reading Malspam Campaign Milks Election Uncertainty
Category Archives: threat actors
Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Trump Campaign Website Defaced by Cryptocurrency Scam
Hackers claim to have access to classified information linking the president to the origin of the coronavirus and criminal collusion with foreign actors. Continue reading Trump Campaign Website Defaced by Cryptocurrency Scam
CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-20… Continue reading CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems
Office 365: A Favorite for Cyberattack Persistence
Bad actors are leveraging legitimate services and tools within Microsoft’s productivity suite to launch cyberattacks on COVID-19 stay-at-home workers, new research finds. Continue reading Office 365: A Favorite for Cyberattack Persistence
PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict
Spear-phishing attacks targeting VIPs and others show key malware changes and are likely linked to the current conflict with Armenia. Continue reading PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict
Linux and macOS Versions of Commercial ‘Malware’ FinSpy Found Online by Amnesty International
Amnesty International revealed the existence of Linux and macOS variants of FinSpy, a commercially available spy suite used extensively by threat actors, as well as law enforcement agencies and government from around the world. Criminals are not respon… Continue reading Linux and macOS Versions of Commercial ‘Malware’ FinSpy Found Online by Amnesty International
MFA Bypass Bugs Opened Microsoft 365 to Attack
Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio. Continue reading MFA Bypass Bugs Opened Microsoft 365 to Attack
IcedID Trojan Rebooted with New Evasive Tactics
Juniper identifies phishing campaign targeting business customers with malware using password protection, among other techniques, to avoid detection. Continue reading IcedID Trojan Rebooted with New Evasive Tactics