Showing only posts tagged national security agency. Show all posts.

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Source

Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networks and laying the groundwork for the ability …

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

Source

Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed …

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Source

On Aug. 13, 2020, someone uploaded a suspected malicious file to VirusTotal, a service that scans submitted files against more than five dozen antivirus and security products. Last month, Microsoft and FireEye identified that file as a newly-discovered fourth malware backdoor used in the sprawling SolarWinds supply chain hack …

Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack

Source

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. [...]