November 14, 2019 Fortinet Threat Landscape Report Confirms Increase in Malware-as-a-Service Edge Surface Attacks The recently released Fortinet Threat Landscape Report for Q3, 2019 shows hackers are targeting edge services and malware-as-a-service continues to grow in popularity. While there ... Read more
November 13, 2019 November Patch Tuesday: Microsoft Patches 74 Flaws Including Actively Exploited RCE November Patch Tuesday has seen Microsoft patch 74 vulnerabilities across all its products, including 13 critical flaws and one remote code execution vulnerability that is ... Read more
November 11, 2019 Highly Convincing Phishing Scam Uses Fake WebEx Client to Deliver RAT A new phishing scam has been detected that uses a WebEx meeting request as a lure to get business users to download a remote access ... Read more
November 1, 2019 Update Google Chrome: Zero-Day Vulnerability Being Actively Exploited in the Wild A recently discovered vulnerability in Google Chrome is being actively exploited by hackers. The vulnerability was discovered by Kaspersky Lab security researchers Anton Ivanov and ... Read more
October 31, 2019 Office 365 Users Targeted with Phishing Emails Containing Incomplete Voicemail Messages A phishing campaign has been identified targeting Office 365 users that includes an incomplete voicemail message as a lure to get them to visit a ... Read more
October 29, 2019 Phishing Campaign Identified Targeting NGOs and United Nations A sophisticated spear phishing campaign has been identified by security researchers at Lookout Inc. that is targeting the United Nations and nongovernment organizations (NGOs). The ... Read more
October 25, 2019 SonicWall Q3 Threat Report Shows Increase in IoT Malware, Web App Attacks, and Encrypted Threats There has been a year-over-year decline in malware and ransomware attacks according to a new report from SonicWall, but Quarter 3, 2019 has seen a ... Read more
October 18, 2019 Phorpiex Botnet Sending 30,000 Sextortion Emails an Hour Sextortion may be nothing new, but it has certainly proven popular with cybercriminals in recent months. Sextortion emails threaten to expose sordid details of the ... Read more
October 15, 2019 Many Popular Smartphones Vulnerable to Actively Exploited Zero-Day Android Flaw A zero-day flaw in the Android operating system used by some of the most popular mobile phones on the market is being exploited in real-world ... Read more
October 11, 2019 Reductor Malware Allows Hijacking of HTTPS Traffic Security researchers at Kaspersky Lab have identified a new form of malware named Reductor that manipulates the random number generator of web browsers allowing decryption ... Read more
September 30, 2019 New Fileless Malware Threat Discovered That Downloads its Own LOLBins A new form of fileless malware has been discovered that uses legitimate Windows tools – living-off-the-land binaries or LOLBins – to conduct its malicious actions. ... Read more
September 12, 2019 Exploit Kit Activity Increases: 4 New Malvertising Campaigns Detected Exploit kit activity may not be at the level seen in 2016, but the malicious website toolkits are enjoying something of a resurgence. New exploit ... Read more
September 11, 2019 Weaponized BlueKeep Exploit Released A weaponized exploit for the BlueKeep vulnerability has been published online by security researchers at Rapid7 and Metasploit. BlueKeep – CVE-2019-0708 – is a wormable ... Read more
September 6, 2019 Flaws in GPS Trackers Can be Exploited to Reveal the Location of Children Many parents are using GPS trackers to monitor the location of their children, but a recent study conducted by researchers at Avast Threat Labs has shown ... Read more
August 27, 2019 Apple Fixes Critical Jailbreak Vulnerability… Again A patch has been released to address a critical jailbreak vulnerability in iOS 12.4. The flaw is a use-after-free vulnerability affecting the iOS kernel and ... Read more
August 27, 2019 IRS Warns of Phishing Scam Targeting Taxpayers and Tax Professionals The Internal Revenue Service (IRS) has issued a warning to U.S. taxpayers and tax professionals about a new nationwide phishing campaign that is spreading keylogging ... Read more
August 8, 2019 New Threat Intelligence Report Provides Insights into Email-Based Malware Attacks A new report has been released that contains an analysis of the most common malware threats that are delivered via email, the most targeted industry ... Read more
August 5, 2019 U.S. Utilities Targeted in Phishing Campaign Spreading New RAT U.S. utilities are being targeted in a phishing campaign distributing a new malware variant called LookBack. The spear phishing campaign impersonates a U.S. engineering licensing ... Read more
July 28, 2019 Cisco Warns of Increase in Email Threats and Complacency About Email Security The findings of Cisco’s Threat Report and CISO Benchmark Study reveal a marked increase in email security threats and highlight the importance of investing in ... Read more
July 28, 2019 Mid-Year Threat Report Shows Rise in Ransomware-as-a-Service and IoT Malware Threats SonicWall’s 2019 Cyber Threat Report shows a there has been a 20% fall in malware attacks in the first half of 2019, but there have ... Read more
July 22, 2019 Phishing Campaign Targets Administrator Credentials with Office Alerts A new phishing campaign has been identified which uses Office 365 admin alerts as a lure to get administrators to click and disclose their login ... Read more
July 19, 2019 Phishing Campaign Uses Fake Office 365 Site to Download Trickbot Trojan The Trickbot Trojan is being distributed via a new fake Office 365 phishing website. The website is virtually identical to official Microsoft Office 365 site, ... Read more
July 19, 2019 Phishing Campaign Uses SHTML Files to Redirect Users to Malicious Websites A novel new phishing campaign has been detected that uses an unusual method of directing users to malicious websites that harvest credentials. Phishing campaigns typically ... Read more
July 18, 2019 Patch Issued for Critical Drupal 8.7.4 Vulnerability A critical flaw in the Drupal website content management system (CMS) has been patched. The vulnerability is in the core component of the CMS and ... Read more
July 9, 2019 Patch Tuesday July 2019: 15 Critical Vulnerabilities Fixed Including 2 Actively Exploited Zero Days Patch Tuesday July 2019 has seen Microsoft fix 77 vulnerabilities including 15 rated critical and two actively exploited zero days. Six of the vulnerabilities patched ... Read more
July 3, 2019 New Mac Malware Being Pushed via High Ranking Websites A new form of Mac malware has been discovered that is being distributed through a variety of websites that rank high in the Google search ... Read more
June 25, 2019 Malspam Campaign Delivers Nanocore and Loki Bot Malware in ISO Files In April, several different malspam campaigns were intercepted which attempted to deliver Nanocore and Loki Bot malware concealed inside small ISO image files of between ... Read more
June 18, 2019 Microsoft Urges Azure Customers to Update Exim to Fix Actively Exploited Vulnerability Microsoft has issued a stern warning to Azure customers to update their virtual machines and ensure they are running Exim version 4.92. Recently, a zero-day ... Read more
June 16, 2019 Netflix Phishing Scam Targets Users in Ireland Netflix users in Ireland are being warned to be wary of a new Netflix-themed phishing scam that attempts to get users to reveal sensitive information ... Read more
June 6, 2019 BlueKeep Exploit Developed That Allows Full Takeover of Windows 7 or Windows 2008 Device in 22 Seconds A working exploit for the Microsoft BlueKeep flaw (CVE-2019-0708) has been developed that allows a full, remote account takeover in 22 seconds with no user ... Read more