Compromised Website Images Camouflage ObliqueRAT Malware
.
The ObliqueRAT malware is now cloaking its payloads as seemingly-innocent image files that are hidden on compromised websites.
Similar Posts
Cyberattacks Now Risk Kinetic Response
Fraud Management & Cybercrime , Governance & Risk Management , Incident & Breach Response Also: Top Healthcare CISOs’ Cybersecurity Concerns; Fresh NIST Resiliency Guidance Mathew J. Schwartz (euroinfosec) • August 13, 2021 Clockwise, from top left: Scott Ferguson, Mathew Schwartz, Marianne Kolbasuk McGee and Tom Field What’s hot in the…
SolarWinds hack got emails of top DHS officials, IT News, ET CIO
Suspected Russian hackers gained access to email accounts belonging to the Trump administration’s head of the Department of Homeland Security and members of the department’s cybersecurity staff whose jobs included hunting threats from foreign countries, The Associated Press has learned. The intelligence value of the hacking of then-acting Secretary Chad Wolf and his staff is…
Phishing Attack Uses Fake Google reCAPTCHA
Zscaler Says It Prevented Over 2,500 Phishing Attacks Akshaya Asokan (asokan_akshaya) • March 7, 2021 Attackers steal login credentials via fake Google reCAPTCHA screens. (Source: Pixabay) A Microsoft-themed phishing campaign is using phony Google reCAPTCHA in an attempt to steal credentials from senior employees of various organizations, a new report by security firm…
CVE-2021-32655 – Alert Detail – Security Database
Executive Summary This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary Informations Name CVE-2021-32655 First vendor Publication 2021-06-01 Vendor Cve Last vendor Modification 2021-06-01 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA…
Federal agencies given five days to find hacked Exchange servers
CISA, the US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, has told federal agencies that they have until 12:00pm EDT on Monday April 5 to scan their networks for evidence of intrusion by malicious actors, and report back the results. CISA is ordering agencies with on-premises Microsoft Exchange servers to urgently conduct the…
Microsoft Exchange exploited to hack 30,000 US organization emails
What just happened? Four exploits found in Microsoft Exchange Server software have led to some 30,000 U.S. government and commercial organizations – including police departments, hospitals, and nonprofits – having their emails hacked. Microsoft rolled-out a patch to fix four zero-day exploits in Exchange Server a few days ago, but that hasn’t stopped a hacking…