Zerologon Vulnerability: What You Need to Know

Zerologon made its way into our collective awareness in late September 2020, when it was revealed that hackers were actively targeting the vulnerability. While the complete patch was made available this month, on February 9th, 2021, both Microsoft and… Continue reading Zerologon Vulnerability: What You Need to Know

Microsoft Patch Tuesday, February 2021 Edition

Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of them were publicized prior to today, potentially giving attackers a head start in figuring out how to exploit the flaws. Continue reading Microsoft Patch Tuesday, February 2021 Edition

Critical MobileIron RCE Flaw Under Active Attack

Attackers are targeting the critical remote code-execution flaw to compromise systems in the healthcare, local government, logistics and legal sectors, among others. Continue reading Critical MobileIron RCE Flaw Under Active Attack

Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign

Chinese state-backed threat actors APT10 have been hacking Japanese businesses for at least a year.
The post Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign appeared first on Security Boulevard.
Continue reading Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks. Continue reading APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

Microsoft Teams Users Under Attack in ‘FakeUpdates’ Malware Campaign

Microsoft warns that cybercriminals are using Cobalt Strike to infect entire networks beyond the infection point, according to a report. Continue reading Microsoft Teams Users Under Attack in ‘FakeUpdates’ Malware Campaign

Halloween News Wrap: The Election, Hospital Deaths and Other Scary Cyberattack Stories

Threatpost breaks down the scariest stories of the week ended Oct. 30 haunting the security industry — including bugs that just won’t die. Continue reading Halloween News Wrap: The Election, Hospital Deaths and Other Scary Cyberattack Stories

Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

Kegtap, Singlemalt, Winekey Malware Serve Up Ransomware to Hospitals

Amid an uptick in attacks on healthcare orgs, malware families, Kegtap, Singlemalt and Winekey are being used to deliver the Ryuk ransomware to already strained systems. Continue reading Kegtap, Singlemalt, Winekey Malware Serve Up Ransomware to Hospitals