07 Jun US: Chinese govt hackers breached telcos to snoop on network trafficSeveral US federal agencies today revealed that Chinese-backed threat actors have targeted and compromised major telecommunications companies and network service providers to steal credentials and harvest data. […]
07 Jun New SVCReady malware loads from Word doc propertiesA previously unknown malware loader named SVCReady has been discovered in phishing attacks, featuring an unusual way of loading the malware from Word documents onto compromised machines. […]
07 Jun Qbot malware now uses Windows MSDT zero-day in phishing attacksA critical Windows zero-day vulnerability, known as Follina and still waiting for an official fix from Microsoft, is now being actively exploited in ongoing phishing attacks to infect recipients with Qbot malware. […]
06 Jun QBot now pushes Black Basta ransomware in bot-powered attacksThe Black Basta ransomware gang has partnered with the QBot malware operation to spread laterally through hacked corporate environments. […]
06 Jun Mandiant: “No evidence” we were hacked by LockBit ransomwareAmerican cybersecurity firm Mandiant is investigating LockBit ransomware gang’s claims that they hacked the company’s network and stole data. […]
06 Jun Microsoft bug banned Rewards accounts when redeeming pointsMicrosoft has fixed a bug where the Microsoft Rewards accounts of customers who redeemed points would get suspended without warning. […]
06 Jun Ransomware gangs now give victims time to save their reputationThreat analysts have observed an unusual trend in ransomware group tactics, reporting that initial phases of victim extortion are becoming less open to the public as the actors tend to use hidden or anonymous entries. […]
06 Jun Windows zero-day exploited in US local govt phishing attacksEuropean governments and US local governments were the targets of a phishing campaign using malicious Rich Text Format (RTF) documents designed to exploit a critical Windows zero-day vulnerability known as Follina. […]
05 Jun Exploit released for Atlassian Confluence RCE bug, patch nowProof-of-concept exploits for the actively exploited critical CVE-2022-26134 vulnerability impacting Atlassian Confluence and Data Center servers have been widely released this weekend. […]
05 Jun Evasive phishing mixes reverse tunnels and URL shortening servicesSecurity researchers are seeing an uptick in the use of reverse tunnel services along with URL shorteners for large-scale phishing campaigns, making the malicious activity more difficult to stop. […]