Another zero-day vulnerability in SolarWinds Serv-U product exploited by cyber criminals
Similar Posts
SolarWinds Attackers Manipulated OAuth App Certificates
Forensics , Fraud Management & Cybercrime , Fraud Risk Management Proofpoint Update Describes the Fraud Tactics Prajeet Nair (@prajeetspeaks) • March 23, 2021 The SolarWinds supply chain attackers manipulated OAuth app certificates to maintain persistence and access privileged resources including email, according to researchers at Proofpoint. See Also: Top 50 Security Threats …
Facebook Disrupts Palestinian APT Activities
Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks , Endpoint Security Social Media Giant Says 2 Groups Were Conducting Cyberespionage Akshaya Asokan (asokan_akshaya) • April 25, 2021 Facebook says it has disrupted the activities of two Palestinian advanced persistent threat groups that targeted victims across the Middle East as part of cyberespionage campaigns. See…
Facebook Disrupts Palestinian APT Activities
Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks , Endpoint Security Social Media Giant says 2 Groups Were Conducting Cyberespionage Akshaya Asokan (asokan_akshaya) • April 25, 2021 Facebook says it has disrupted the activities of two Palestinian advanced persistent threat groups that targeted victims across the Middle East as part of cyber espionage campaigns….
Why Ransomware Hackers Love a Holiday Weekend
On the Friday heading into Memorial Day weekend this year, it was meat processing giant JBS. On the Friday before the Fourth of July, it was IT management software company Kaseya and, by extension, over a thousand businesses of varying size. It remains to be seen whether Labor Day will see a high-profile ransomware meltdown…
FlyTrap Android Malware Compromises Thousands of Facebook Accounts
A new Android Trojan codenamed FlyTrap has hit at least 140 countries since March 2021 and has spread to over 10,000 victims through social media hijacking, third-party app stores, and sideloaded applications. Zimperium’s zLabs mobile threat research teams recently found several previously undetected applications using Zimperium’s z9 malware engine and on-device detection. Following their forensic…
StrRAT Masquerades as Ransomware – InfoRiskToday
Cybercrime , Fraud Management & Cybercrime , Social Engineering Microsoft Says Spam Campaign Uses Updated Variant Prajeet Nair (@prajeetspeaks) • May 24, 2021 If the “Outgoing Payments” PDF is clicked, it downloads the StrRAT. (Source: Microsoft) Microsoft is warning about a spam campaign that uses an updated variant of Java-based StrRAT malware that…