Threatpost ![]() |
---|
ZuoRAT Can Take Over Widely Used SOHO Routers |
Thu, 30 Jun 2022 17:20:30 +0000 Devices from Cisco, Netgear and others at risk from the multi-stage malware, which has been active since April 2020 and shows the work of a sophisticated threat actor. |
A Guide to Surviving a Ransomware Attack |
Thu, 30 Jun 2022 11:59:34 +0000 Oliver Tavakoli, CTO at Vectra AI, gives us hope that surviving a ransomware attack is possible, so long as we apply preparation and intentionality to our defense posture. |
Leaky Access Tokens Exposed Amazon Photos of Users |
Wed, 29 Jun 2022 20:18:50 +0000 Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents. |
Patchable and Preventable Security Issues Lead Causes of Q1 Attacks |
Wed, 29 Jun 2022 13:00:49 +0000 Attacks against U.S. companies spike in Q1 2022 with patchable and preventable external vulnerabilities responsible for bulk of attacks. |
Top Six Security Bad Habits, and How to Break Them |
Tue, 28 Jun 2022 13:05:00 +0000 Shrav Mehta, CEO, Secureframe, outlines the top six bad habits security teams need to break to prevent costly breaches, ransomware attacks and prevent phishing-based endpoint attacks. |
Mitel VoIP Bug Exploited in Ransomware Attacks |
Tue, 28 Jun 2022 12:42:34 +0000 Researchers warn threat actors are using a novel remote code execution exploit to gain initial access to victim’s environments. |
‘Killnet’ Adversary Pummels Lithuania with DDoS Attacks Over Blockade |
Tue, 28 Jun 2022 12:17:05 +0000 Cyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad. |
Log4Shell Vulnerability Targeted in VMware Servers to Exfiltrate Data |
Tue, 28 Jun 2022 11:57:06 +0000 CISA warns that threat actors are ramping up attacks against unpatched Log4Shell vulnerability in VMware servers. |
Google Warns Spyware Being Deployed Against Android, iOS Users |
Fri, 24 Jun 2022 11:02:00 +0000 The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs. |
Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug |
Thu, 23 Jun 2022 12:21:33 +0000 The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers. |