Mash – Wildcat Cyber Patrol

Microsoft Exchange Server Zero-day Temporary Mitigation Can Be Bypassed, Security Researchers Say

Threat actors have been abusing two Microsoft Exchange zero-days in order to breach its servers and remotely execute the malicious [...]

News

Exchange

Posted on October 4, 2022 by Mash

Windows 11 22H2 Feature 'File Locksmith' Allows Users To Delete Files In Use

Windows uses File Explorer to work with files, but its functionality is limited, for example, it doesn't allow users to [...]

News

Windows 11

Posted on October 3, 2022 by Mash

North Korean Hacking Group Lazarus Abuses Dell Driver Bug In BYOVD Attack

North Korean hacking group Lazarus has been using a Windows rootkit called FudModule to abuse a Dell driver vulnerability in [...]

News

Lazarus

Posted on October 2, 2022 by Mash

"Novel Malware Ecosystem" Threatens VMware ESXi Hypervisors

According to Google's Mandiant threat intelligence division, threat actors are deploying new post-compromise implants in VMware's virtualization software to gain [...]

News

Posted on October 1, 2022 by Mash

NullMixer Dropper Infects Windows Devices With Various Malware Families

A new malware dropper NullMixer has been discovered to infect Windows devices with a large variety of malware families, including [...]

News

Posted on September 28, 2022 by Mash

New Adware Apps on Google Play Discovered - Totaling Around 13 Million Installations

Security researchers have found 75 adware apps on Google Play and 10 on Apple's App Store, adding to 13 million [...]

News

Posted on September 27, 2022 by Mash

Windows 11 22H2 Enhanced Phishing Protection Feature Warns Users When Typing Password in Notepad

One of the new features coming with Windows 11 22H2 is a security feature called Enhanced Phishing Protection. The feature's [...]

News

Windows 11

Posted on September 25, 2022 by Mash

Popular npm Packages Used By Several Crypto Projects Compromised

Several npm packages published by the decentralized exchange platform dYdX crypto exchange have been compromised. The compromised packages were published [...]

News

Posted on September 24, 2022 by Mash

High Severity ManageEngine Vulnerability Actively Used In Exploits

According to The Cybersecurity and Infrastructure Security Agency (CISA), the high severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products [...]

News

Posted on September 24, 2022 by Mash

Ongoing Chromeloader Malware Campaign Dropping Various Malware, VMware and Microsoft Warn

According to VMware and Microsoft, an ongoing widespread Chromeloader malware campaign was seen to drop malicious browser extensions and even [...]

News

Posted on September 21, 2022 by Mash

Grand Theft Auto 6 Source Code and Gameplay Debug Videos Leaked Due To Rockstar's Slack Server Breach

GTA 6 source code and gameplay videos have been leaked to GTAForums by the threat actor ‘teapotuberhacker’. The RAR archive [...]

News

Posted on September 19, 2022 by Mash

Free Decryptor For LockerGoga Ransomware Released By Bitdefender

Romanian cybersecurity company Bitdefender has released a free decryptor for LockerGoga ransomware that victims can use to decrypt their files [...]

News

Posted on September 17, 2022 by Mash

Apple Released New Security Updates - Addresses Eight Zero-day Used In Attacks This Year

The new security advisory has been issued by Apple on Monday in which the company addressed the eighth zero-day vulnerability [...]

News

Posted on September 13, 2022 by Mash

Threat Actors Actively Employ Intermittent Encryption In Recent Ransomware Attacks

More and more ransomware gangs are employing the new tactic called intermittent encryption which allows faster encryption and fewer chances [...]

News

Posted on September 11, 2022 by Mash

Iranian State-Sponsored Hacking Group Nemesis Kitten Encrypts Windows Systems Using BitLocker

According to Microsoft, state-sponsored hacking group DEV-0270 (also known as Nemesis Kitten) is actively abusing recently found vulnerabilities and uses [...]