Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP!

The day after VMware released fixes for a critical RCE flaw (CVE-2021-21972) found in a default vCenter Server plugin, opportunistic attackers began searching for publicly accessible vulnerable systems. We've detected mass scanning activity targeting vulnerable VMware vCenter servers (https://t.co/t3Gv2ZgTdt). Query our API for "tags=CVE-2021-21972" for relevant indicators and source IP addresses. #threatintel https://t.co/AcSZ40U5Gp — Bad […]

Continue Reading

Accellion FTA attacks, extortion attempts might be the work of FIN11

Mandiant/FireEye researchers have tentatively linked the Accellion FTA zero-day attacks to FIN11, a cybercrime group leveraging CLOP ransomware to extort targeted organizations. Accellion has also confirmed on Monday that “out of approximately 300 total FTA clients, fewer than 100 were victims of the attack.” A little bit of background information Starting in December 2020, unknown […]

Continue Reading

Comment utiliser Flash en 2021 et pourquoi vous devriez éviter | Blog officiel de Kaspersky

Début 2021, Adobe Flash a officiellement cessé d’exister. Certains amateurs de vieux jeux basés sur le navigateur ont été émus mais la plupart des experts en sécurité informatique ont été soulagés puisque le monde était enfin prêt à vivre sans cette technologie certes remarquable mais obsolète de nos jours. Nous y étions-nous vraiment préparés ? Il […]

Continue Reading

Top 10 most used MITRE ATT&CK tactics and techniques

Which tactics and techniques are cyber attackers favoring? vFeed has compiled a list of the Top 10 Most Used MITRE ATT&CK Tactics and Techniques to help security teams focus their defenses more effectively. MITRE ATT&CK helps understand attacker behavior The MITRE ATT&CK framework is a well known and widely used knowledge base of cyber adversary […]

Continue Reading

Accellion to retire enterprise file-sharing product targeted in recent attacks

U.S.-based cloud solutions company Accellion will soon retire FTA, its legacy enterprise file-sharing solution, vulnerabilities in which have recently been exploited by attackers to breach a variety of organizations, including the Australian Securities and Investments Commission, the Washington State Auditor Office, and Singapore telecom Singtel. What is Accellion FTA? Accellion FTA (File Transfer Appliance) is […]

Continue Reading

Systèmes internes de CD Projekt victimes d’un ransomware | Blog officiel de Kaspersky

CD Projekt a publié un communiqué pour annoncer qu’un rançongiciel (ransomware), dont le nom n’est pas mentionné, s’en est pris aux systèmes internes de l’entreprise. L’éditeur, connu pour sa série de jeux vidéo The Witcher, son célèbre projet Cyberpunk 2077 et son service de distribution numérique GOG.com, explique qu’à sa connaissance les données personnelles des […]

Continue Reading

Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files

CyberArk researchers have released BlobHunter, an open-source tool organizations can use to discover Azure blobs containing sensitive files they have inadvertently made public. The cloud storage misconfiguration problem The many advantages of using the public cloud for storage are not lost on most organizations. But despite access to the files uploaded to cloud storages being […]

Continue Reading