The Week in Ransomware - March 18th 2022 - Targeting the auto industry
This week, the automotive industry has been under attack, with numerous companies exhibiting signs of breaches or ransomware activity. [...]
Showing only posts by Lawrence Abrams. Show all posts.
Microsoft March 2022 Patch Tuesday fixes 71 flaws, 3 zero-days
Today is Microsoft's March 2022 Patch Tuesday, and with it comes fixes for three zero-day vulnerabilities and a total of 71 flaws. [...]
New Linux bug gives root on all major distros, exploit released
A new Linux vulnerability known as 'Dirty Pipe' allows local users to gain root privileges through publicly available exploits. [...]
Mozilla Firefox 97.0.2 fixes two actively exploited zero-day bugs
Mozilla has released Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0 to fix two critical zero-day vulnerabilities actively exploited in attacks. [...]
Malware now using NVIDIA's stolen code signing certificates
Threat actors are using stolen NVIDIA code signing certificates to sign malware to appear trustworthy and allow malicious drivers to be loaded in Windows. [...]
Malware now using stolen NVIDIA code signing certificates
[...]
The Week in Ransomware - March 4th 2022 - The Conti Leaks
This week's biggest story is the massive data leak from the Conti ransomware operation, including over 160,000 internal messages between members and source code for the ransomware and TrickBot operation. [...]
Malware campaign impersonates VC firm looking to buy sites
BleepingComputer was recently contacted by an alleged "venture capitalist" firm that wanted to invest or purchase our site. However, as we later discovered, this was a malicious campaign designed to install malware that provides remote access to our devices. [...]
Conti Ransomware source code leaked by Ukrainian researcher
A Ukrainian researcher continues to deal devastating blows to the Conti ransomware operation, leaking further internal conversations, as well as the source for their ransomware, administrative panels, and more. [...]
Insurance giant AON hit by a cyberattack over the weekend
Professional services and insurance giant AON has suffered a cyberattack that impacted a "limited" number of systems. [...]
Conti ransomware's internal chats leaked after siding with Russia
An angry member of the Conti ransomware operation has leaked over 60,000 private messages after the gang sided with Russia over the invasion of Ukraine. [...]
Ukraine recruits "IT Army" to hack Russian entities, lists 31 targets
Ukraine is recruiting a volunteer "IT army" of security researchers and hackers to conduct cyberattacks on thirty-one Russian entities, including government agencies, critical infrastructure, and banks. [...]
TrickBot malware operation shuts down, devs move to BazarBackdoor
The TrickBot malware operation has shut down after its core developers move to the Conti ransomware gang to focus development on the stealthy BazarBackdoor and Anchor malware families. [...]
TrickBot malware operation shuts down, devs move to stealthier malware
The TrickBot malware operation has shut down after its core developers move to the Conti ransomware gang to focus development on the stealthy BazarBackdoor and Anchor malware families. [...]
New data-wiping malware used in destructive attacks on Ukraine
Cybersecurity firms have found a new data wiper used in destructive attacks today against Ukrainian networks just as Russia moves troops into regions of Ukraine. [...]
Devious phishing method bypasses MFA using remote access software
A devious new phishing technique allows attackers to bypass MFA by secretly having victims log in to their accounts directly on attacker-controlled servers using VNC. [...]
The Week in Ransomware - February 18th 2022 - Mergers & Acquisitions
The big news this week is that the Conti ransomware gang has recruited the core developers and managers of the TrickBot group, the developers of the notorious TrickBot malware. [...]
Kali Linux 2022.1 released with 6 new tools, SSH wide compat, and more
Offensive Security has released Kali Linux 2022.1, the first version of 2022, with improved accessibility features, a visual refresh, SSH wide compatibility, and of course, new toys to play with! [...]
Google Chrome emergency update fixes zero-day exploited in attacks
Google has released Chrome 98.0.4758.102 for Windows, Mac, and Linux, to fix a high-severity zero-day vulnerability used by threat actors in attacks. [...]
Sports brand Mizuno hit with ransomware attack delaying orders
Sports equipment and sportswear brand Mizuno is affected by phone outages and order delays after being hit by ransomware, BleepingComputer has learned from sources familiar with the attack. [...]
Microsoft Defender will soon block Windows password theft
Microsoft is enabling an 'Attack Surface Reduction' security feature rule by default to block hackers' attempts to steal Windows credentials from the LSASS process. [...]
Microsoft is making it harder to steal Windows passwords from memory
Microsoft is enabling an 'Attack Surface Reduction' security feature rule by default to block hackers' attempts to steal Windows credentials from the LSASS process. [...]
NFL's San Francisco 49ers hit by Blackbyte ransomware attack
The NFL's San Francisco 49ers team is recovering from a cyberattack by the BlackByte ransomware gang who claims to have stolen data from the American football organization. [...]
The Week in Ransomware - February 11th 2022 - Maze, Egregor decryptors
We saw the Maze ransomware developers reemerge briefly this week as they shared the master decryption keys for the Egregor, Maze, and Sekhmet ransomware operations. [...]
Microsoft starts killing off WMIC in Windows, will thwart attacks
Microsoft is moving forward with removing the Windows Management Instrumentation Command-line (WMIC) tool, wmic.exe, starting with the latest Windows 11 preview builds in the Dev channel. [...]
« newer articles | page 27 | older articles »