Virus & Malware – Page 17 – WindowsTechs.com

Slack Forces Password Resets After Discovering Software Flaw

Posted on August 5, 2022 by Ryan Naraine

Workplace productivity software giant Slack on Friday forced password resets for a tiny fraction of its users after the discovery of a security flaw that exposed Slack credentials.
Slack’s security response team alerted users to the issue via email and… Continue reading Slack Forces Password Resets After Discovering Software Flaw→

VirusTotal Data Shows How Malware Distribution Leverages Legitimate Sites, Apps

Posted on August 4, 2022 by Eduard Kovacs

Google-owned malware analysis service VirusTotal has published a report showing how threat actors abuse trust to bypass defenses and deliver their malware.
According to data collected by VirusTotal, legitimate websites and applications are often levera… Continue reading VirusTotal Data Shows How Malware Distribution Leverages Legitimate Sites, Apps→

Compliance Automation Startup RegScale Scores $20 Million Investment

Posted on August 3, 2022 by Ryan Naraine

RegScale, a Virginia startup building technology to manage continuous compliance automation tasks, has attracted $20 million in early-stage venture capital funding.
The Series A round was led by SYN Ventures with participation from SineWave Ventures, V… Continue reading Compliance Automation Startup RegScale Scores $20 Million Investment→

Robinhood Crypto Penalized $30M for Violating NY Cybersecurity Regulations

Posted on August 3, 2022 by Ryan Naraine

VMware Ships Urgent Patch for Authentication Bypass Security Hole

Posted on August 2, 2022 by Ryan Naraine

Virtualization technology giant VMware on Tuesday shipped an urgent, high-priority patch to address an authentication bypass vulnerability in its Workspace ONE Access, Identity Manager and vRealize Automation products.
read more Continue reading VMware Ships Urgent Patch for Authentication Bypass Security Hole→

LockBit Ransomware Abuses Windows Defender for Payload Loading

Posted on August 1, 2022 by Eduard Kovacs

A LockBit ransomware operator or affiliate has been abusing Windows Defender to decrypt and load Cobalt Strike payloads during attacks, according to endpoint security firm SentinelOne.
read more Continue reading LockBit Ransomware Abuses Windows Defender for Payload Loading→

Microsoft Connects USB Worm Attacks to ‘EvilCorp’ Ransomware Gang

Posted on July 29, 2022 by Ryan Naraine

Cybersleuths at Microsoft have found a link between the recent ‘Raspberry Robin’ USB-based worm attacks and EvilCorp, a notorious Russian ransomware operation sanctioned by the U.S. government.
read more Continue reading Microsoft Connects USB Worm Attacks to ‘EvilCorp’ Ransomware Gang→

Malicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft Protections

Posted on July 29, 2022 by Ionut Arghire

Threat actors are embedding macro-enabled Office documents in container files such as archives and disk images to circumvent a recently rolled-out macro-blocking feature in Microsoft Office.
read more Continue reading Malicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft Protections→

N Korean APT Uses Browser Extension to Steal Emails From Foreign Policy, Nuclear Targets

Posted on July 29, 2022 by Ionut Arghire

Over the past year, North Korean advanced persistent threat (APT) actor Kimsuky has been observed using a browser extension to steal content from victims’ webmail accounts, threat intelligence and incident response company Volexity reports.
read more Continue reading N Korean APT Uses Browser Extension to Steal Emails From Foreign Policy, Nuclear Targets→

Calls Mount for US Gov Clampdown on Mercenary Spyware Merchants

Posted on July 28, 2022 by Ryan Naraine

Cybersecurity professionals from Google’s threat hunting unit and the University of Toronto’s Citizen Lab are upping the pressure on mercenary hacking firms selling high-end surveillance spyware with fresh calls for the U.S. government to urgently clam… Continue reading Calls Mount for US Gov Clampdown on Mercenary Spyware Merchants→