Collaborate Disseminate
Cybersecurity organizations warn that a recently patched vulnerability in the Questions for Confluence application is already being exploited in attacks.
Questions for Confluence is an application designed to help Confluence users obtain information, s… Continue reading Exploitation of Recent Confluence Vulnerability Underway
Microsoft has warned of an increase in malicious Internet Information Services (IIS) extensions used as backdoors on Exchange servers.
read more Continue reading Microsoft: Attackers Increasingly Using IIS Extensions as Server Backdoors
Security researchers have observed an uptick in new Luca Stealer samples after the malware’s source code was made public.
Coded in Rust, the malware was initially observed in early July 2022, when its developer posted the source code on cybercrime foru… Continue reading Dozens of ‘Luca Stealer’ Malware Samples Emerge After Source Code Made Public
A recently patched Chrome vulnerability that appears to have been exploited by an Israeli spyware company also impacts Microsoft’s Edge and Apple’s Safari web browsers.
read more Continue reading Chrome Flaw Exploited by Israeli Spyware Firm Also Impacts Edge, Safari
A new cross-platform ransomware named Luna can encrypt files on Windows, Linux and ESXi, but its developers are only offering it to Russian-speaking affiliates.
read more Continue reading New Cross-Platform ‘Luna’ Ransomware Only Offered to Russian Affiliates
The United States Cyber Command (USCYBERCOM) this week released indicators of compromise (IoCs) associated with malware families identified in recent attacks targeting Ukraine.
read more Continue reading USCYBERCOM Releases IoCs for Malware Targeting Ukraine
Russia-linked Turla threat actor spotted using Android malware for first time
Google and the European Union have issued separate warnings this week over Russian cyberattacks and misinformation campaigns.
read more Continue reading Google, EU Warn of Malicious Russian Cyber Activity
Researchers at cybersecurity company ESET have analyzed a previously undocumented macOS malware that appears to have been used in targeted attacks to steal valuable information from compromised systems.
read more Continue reading New ‘CloudMensis’ macOS Spyware Used in Targeted Attacks
A Chinese threat actor named Roaming Mantis has been targeting Android users in France with the MoqHao malware in a new smishing campaign, security researchers with Sekoia warn.
read more Continue reading Ongoing ‘Roaming Mantis’ Smishing Campaign Hits Over 70,000 Users in France
Tools advertised as being capable of cracking passwords for HMIs, PLCs and other industrial products have been found to exploit a zero-day vulnerability, and threat actors are using these tools to deliver malware.
read more
Continue reading PLC and HMI Password Cracking Tools Deliver Malware