Remcos RAT delivered via Visual Basic
This blog post was authored by Erika Noerenberg Introduction Over the past months, Malwarebytes researchers have been tracking a unique...
Beware, crypto-scammer seeks foreigner with BLOCK CHAIN ACCOUNT
We’ve observed a 419-style scam (also known as an advance fee scam) which combines the promise of cryptocurrency riches with...
StopRansomware.gov brings together information on stopping and surviving ransomware attacks
The US Department of Homeland Security (DHS) and the US Department of Justice (DOJ)—along with other federal partners—have launched a...
A week in security (July 12 – July 18)
Last week on Malwarebytes Labs: DNS-over-HTTPS takes another small step towards global dominationNope, that isn’t Elon Musk, and he isn’t...
Juniper Bug Allows RCE and DoS Against Carrier Networks
Juniper Networks' Steel-Belted Radius (SBR) Carrier Edition has a severe remote code-execution vulnerability that leaves wireless carrier and fixed operator...
Business correspondence in messengers and social networks poses a cyber threat to companies
Experts believe that screenshots of work correspondence sent by company employees to third parties may fall into the hands of...
Romanian Cryptojacking Gang Target Linux-based Machines to Install Cryptominer Malware
Romanian threat actors are employing a new brute-forcer “Diicot brute” to crack the passwords on Linux-based machines and install cryptominer...
Israeli Firm Assisted Governments Target Journalists & Activists with Zero Days and Spyware
Microsoft as part of its Patch on Tuesday fixed two of the zero-day Windows flaws weaponized by Candiru, an Israeli...
Thousands of PS4s Seized, Employed in Mining Cryptocurrency Illegally
In Vinnytsia city located along the Southern Bug river, a large-scale electricity theft was revealed and recorded by the SBU....
MANSPIDER – Spider Entire Networks For Juicy Files Sitting On SMB Shares. Search Filenames Or File Content – Regex Supported!
Crawl SMB shares for juicy information. File content searching + regex is supported! File types supported:PDF DOCX XLSX PPTX any...
Orbitaldump – A Simple Multi-Threaded Distributed SSH Brute-Forcing Tool Written In Python
A simple multi-threaded distributed SSH brute-forcing tool written in Python.How it WorksWhen the script is executed without the --proxies switch,...
Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco
A hacker claims to have stolen 1 TB of sensitive data from the Saudi Arabian petroleum and natural gas giant,...
Pegasus Project – how governments use Pegasus spyware against journalists
Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s...
Experts show how to bypass Windows Hello feature to login on Windows 10 PCs
Security researchers demonstrated how to bypass the Windows Hello facial recognition that is used in Windows 10 as a login...
CVE-2021-34329
Summary: A vulnerability has been identified in JT2Go (All versions < V13.2), Solid Edge SE2021 (All Versions < SE2021MP5), Teamcenter...
CVE-2021-34330
Summary: A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll...
CVE-2021-34331
Summary: A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll...
CVE-2021-30547
Summary: Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform...
CVE-2021-35469
Summary: The Lexmark Printer Software G2, G3 and G4 Installation Packages have a local escalation of privilege vulnerability due to...
Workflow Automation Tool: n8n cloud
What is n8n?n8n (pronounced n-eight-n) helps you to interconnect every app with an API in the world with each other...
Short Édition – 505,466 breached accounts
In June 2021, the French publishing house of short literature Short Édition suffered a data breach that exposed 505k records....
“Seven or eight” zero-days: The failed race to fix Kaseya VSA, with Victor Gevers, Lock and Code S02E13
Kaseya VSA included at least “seven or eight” privately known zero-day vulnerabilities before it suffered a widespread ransomware attack that...
THORChain Suffers $7.6 Million Loss in Latest DeFi Exploit
Popular cross-chain liquidity exchange THORChain got compromised in a new DeFi hack where $7.6 million were stolen, suffering a second...
Telegram’s Encryption Protocol Detected with Vulnerabilities
A multinational computer team claimed on Friday that the popular encrypted chat app Telegram is detected with four cryptographic vulnerabilities...
