BazarLoader Malware Abuses Slack, BaseCamp Clouds
Two cyberattack campaigns are making the rounds using unique social-engineering techniques. Source: Threatpost.com
Continue ReadingAuthor: Tara Seals
NSA: 5 Security Bugs Under Active Nation-State Cyberattack
Widely deployed platforms from Citrix, Fortinet, Pulse Secure, Synacor and VMware are all in the crosshairs of APT29, bent on stealing credentials and more. Source: Threatpost.com
Continue ReadingGafgyt Botnet Lifts DDoS Tricks from Mirai
The IoT-targeted malware has also added new exploits for initial compromise, for Huawei, Realtek and Dasan GPON devices. Source: Threatpost.com
Continue ReadingSecurity Bug Allows Attackers to Brick Kubernetes Clusters
The vulnerability is triggered when a cloud container pulls a malicious image from a registry. Source: Threatpost.com
Continue ReadingFBI Clears ProxyLogon Web Shells from Hundreds of Orgs
In a veritable cyber-SWAT action, the Feds remotely removed the infections without warning businesses beforehand. Source: Threatpost.com
Continue ReadingMan Arrested for AWS Bomb Plot
A man caught in an FBI sting allegedly said he wanted to destroy “70 percent of the internet” by going after the tech giant’s data centers. Source: Threatpost.com
Continue ReadingIcedID Circulates Via Web Forms, Google URLs
Attackers are filling out and submitting web-based “contact us” forms, thus evading email spam filters. Source: Threatpost.com
Continue Reading623M Payment Cards Stolen from Cybercrime Forum
The database was subsequently leaked elsewhere, imperiling consumers from the U.S. and around the world. Source: Threatpost.com
Continue ReadingAdware Spreads via Fake TikTok App, Laptop Offers
Cybercriminals are encouraging users to send the “offers” via WhatsApp to their friends as well. Source: Threatpost.com
Continue ReadingIcedID Banking Trojan Surges: The New Emotet?
A widespread email campaign using malicious Microsoft Excel attachments and Excel 4 macros is delivering IcedID at high volumes, suggesting it’s filling the Emotet void. Source: Threatpost.com
Continue Reading