Cybercriminals Use Azure Front Door in Phishing Attacks
Experts identified a spike in phishing content delivered via Azure Front Door (AFD), a cloud CDN service provided by Microsoft....
News
DDoS-for-hire service provider jailed
Matthew Gatrel, a 33-year-old man from St. Charles, Illinois, has been sentenced to two years in prison for running websites...
Cloudflare Outage
Major CDN provider Cloudflare has had a terrible time today with a major outage! Many major websites, including some huge...
‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace
Introduction When reports of a cyberattack appear in the headlines, questions abound regarding who launched it and why. Even if...
Russian APT28 hacker accused of the NATO think tank hack in Germany
The Attorney General has issued an arrest warrant for a hacker who targeted a NATO think tank in Germany for...
Google expert detailed a 5-Year-Old flaw in Apple Safari exploited in the wild
Google Project Zero experts disclosed details of a 5-Year-Old Apple Safari flaw actively exploited in the wild. Researchers from the...
Security Affairs newsletter Round 370 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...
Cisco will not address critical RCE in end-of-life Small Business RV routers
Cisco announced that it will not release updates to fix the CVE-2022-20825 flaw in end-of-life Small Business RV routers. Cisco...
BRATA Android Malware evolves and targets the UK, Spain, and Italy
The developers behind the BRATA Android malware have implemented additional features to avoid detection. The operators behind the BRATA Android malware have implemented...
Critical flaw in Ninja Forms WordPress Plugin actively exploited in the wild
A critical vulnerability in Ninja Forms plugin potentially impacted more than one million WordPress websites In middle June, the Wordfence...
Experts warn of a new eCh0raix ransomware campaign targeting QNAP NAS
Experts warn of a new ech0raix ransomware campaign targeting QNAP Network Attached Storage (NAS) devices. Bleeping Computer and MalwareHunterTeam researchers,...
US DoJ announced to have shut down the Russian RSOCKS Botnet
The U.S. Department of Justice (DoJ) announced to have shut down the infrastructure associated with the Russian botnet RSOCKS. The...
MaliBot Android Banking Trojan targets Spain and Italy
Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers...
Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed
China-linked threat actors exploited the zero-day flaw CVE-2022-1040 in Sophos Firewall weeks before it was fixed by the security vendor....
Websites Hosting Fake Cracks Spread Updated CopperStealer Malware
We found updated samples of the CopperStealer malware infecting systems via websites hosting fake software. If you like the site,...
Security 101: Cloud-native Virtual Patching
Learn about the challenges faced when implementing a vulnerability and patch management policy and how does cloud-native virtual patching can...
State of OT Security in 2022: Big Survey Key Insights
Learn about the state of OT Security in 2022 by reading the key insights found through surveying more than 900...
Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company
Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab...
A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould
Experts discovered a feature in Microsoft 365 suite that could be abused to encrypt files stored on SharePoint and OneDrive...
BlackCat Ransomware affiliates target unpatched Microsoft Exchange servers
The BlackCat ransomware gang is targeting unpatched Exchange servers to compromise target networks, Microsoft warns. Microsoft researchers have observed BlackCat ransomware gang...
ALPHV/BlackCat ransomware gang starts publishing victims’ data on the clear web
ALPHV/BlackCat ransomware group began publishing victims’ data on the clear web to increase the pressure on them and force them to...
Researchers disclosed a remote code execution flaw in Fastjson Library
Researchers disclosed a remote code execution vulnerability, tracked as CVE-2022-25845, in the popular Fastjson library. Cybersecurity researchers from JFrog disclosed details of...
Cisco fixed a critical Bypass Authentication flaw in Cisco ESA and Secure Email and Web Manager
Cisco addressed a critical bypass authentication flaw in Cisco Email Security Appliance (ESA) and Secure Email and Web Manager. Cisco...
A new rootkit comes to an ATM near you
It’s not unusual to hear about malware created to affect automated teller machines (ATMs). Malware can be planted at the...
