Advanced Persistent Threats
-
Threat Intelligence
Ransomware Attackers Bypass Microsoft’s ProxyNotShell Mitigations With Fresh Exploit
The operators of a ransomware strain called Play have developed a new exploit chain for a critical remote code execution…
-
Threat Intelligence
Godfather Banking Trojan Masquerades as Legitimate Google Play App
A type of Android malware that’s been targeting banking users worldwide since March has resurfaced with advanced obfuscation methods, masquerading as…
-
Threat Intelligence
Name That Toon: Kiss and Tell
What secrets might be released with a quick peck under the combination lock? For that we need a cybersecurity-related caption. Here are four…
-
Threat Intelligence
NATO-Member Oil Refinery Targeted in Russian APT Blitz Against Ukraine
Physical threats against a Ukrainian cybersecurity researcher and a failed attempt to breach a petroleum refinery inside a NATO-member nation…
-
Threat Intelligence
Raspberry Robin Worm Targets Telcos & Governments
It’s likely the group behind the worm called Raspberry Robin is just testing the waters — launching attacks against telecommunications…
-
Threat Intelligence
Microsoft Warns on ‘Achilles’ macOS Gatekeeper Bypass
A bypass vulnerability in macOS for Apple’s Gatekeeper mechanism could allow cyberattackers to execute malicious applications on target Macs —…
-
Threat Intelligence
AWS Elastic IP Transfer Feature Gives Cyberattackers Free Range
Attackers can compromise a new feature in Amazon Web Services (AWS) to hijack cloud accounts’ static public IP addresses and abuse…
-
Threat Intelligence
‘Blindside’ Attack Subverts EDR Platforms From Windows Kernel
A newly pioneered technique could render endpoint detection and response (EDR) platforms “blind” by unhooking the user-facing mode of the…
-
Threat Intelligence
Searchlight Security Changes Name to Searchlight Cyber and Launches New Brand
Portsmouth, UK & Washington DC, US – December 20 2022 — Searchlight Cyber, the dark web intelligence company, has announced its rebrand…
-
Threat Intelligence
Sophisticated DarkTortilla Malware Serves Imposter Cisco, Grammarly Pages
Researchers have spotted two phishing sites — one spoofing a Cisco webpage and the other masquerading as a Grammarly site…