Hackers Use New .NET Loader Malware to Deliver Payloads
An unrecorded .NET Loader was identified during routine threat hunting that downloads, decrypts, and executes a wide range of malicious payloads. Multiple threat actors extensively…
Category: CyberSecurityNews
APT Groups Actively Targeting Outlook and Exchange Email
A china based APT actor accessed Microsoft 365 cloud environment and exfiltrated unclassified Exchange Online Outlook data from a small number of accounts. In June 2023,…
5 Phases of Russian Cyber Playbook in Attacks Against Ukraine
Russia’s invasion of Ukraine on February 24, 2022, followed escalating cyber operations, categorized into six phases, by Russian troops amassed at the border. Beyond the…
QuickBlox Security Flaws Exposes Millions of Users Sensitive Data
Recent reports from Team82 and Check Point Research (CPR) team state that there has been a major vulnerability in QuickBlox SDK (Software Development Kit) and…
Ransomware Payments are at a Record High for 2023
The significant plunge in cyber crimes shows a decent rise in legitimate services in the mid of this year, 2023. However, the rise in ransomware…
Critical Adobe Security Flaws Let Attacker Execute Arbitrary Code
Adobe addressed critical security issues in ColdFusion and InDesign. Users should install security updates immediately to ensure system safety. Stay informed and prioritize security maintenance…
6 Actively Exploited Zero-Days and 132 Flaws Patched
A total of 132 new security flaws in Microsoft’s products were patched, including six zero-day issues that the company claimed were being actively used in the…
Zoom Security Flaws let Attackers Escalate Privileges
Zoom has released security patches for 6 high and 1 low severity vulnerabilities, allowing threat actors to escalate privileges and disclose sensitive information. The CVSS…
Stealthy Universal Rootkit Let Attacker Load Payload Directly
A self-signed China-originated Rootkit acts as a universal downloader targeting gaming sectors to exfiltrate sensitive information. The threat actors abuse Microsoft signing portals to sign…
Siemens & Schneider Electric Releases Patch for 50 vulnerabilities
Siemens and Schneider Electric published nine new security warnings that together addressed 50 vulnerabilities impacting its industrial devices. Recently, Schneider Electric and Siemens Energy indicated that…
Fortinet Critical Flaw Let Remote Attacker Execute Arbitrary Code
A ‘critical’ severity flaw has been detected inFortiOS and FortiProxy, identified as CVE-2023-33308 (CVSS rating 9.8). A remote attacker can use the vulnerability on susceptible devices to execute…
DangerousPassword Attacks Targeting Windows, macOS, & Linux
Python-based malware targets Windows, linux, and macOS and is presumed to be used by dangerous password attack groups, also known as Crypto mimics. This group…