Mash – Wildcat Cyber Patrol

Microsoft Registering Autodiscover Domains to Prevent Credentials Stealing

When configuring users' Exchange accounts, some mail clients don't implement the Autodiscover protocol properly causing them to try and authenticate [...]

News

Posted on September 25, 2021 by Mash

Apple Fixes Zero-day Vulnerability Exploited in the Wild to Hack into Older Macs and iPhones

Apple has released security updates for the zero-day vulnerability tracked as CVE-2021-30869 that was found in the XNU operating system [...]

News

Posted on September 24, 2021 by Mash

Hackers Compromising Windows IIS Servers To Spread TeamViewer Malware

Threat actors are compromising Windows IIS servers to add expired certificate notification pages that bait users into downloading a fake [...]

News

Posted on September 21, 2021 by Mash

Ongoing Zloader Attacks Disable Windows Defender To Hide Its Presence

A new ongoing Zloader attack is using a new infection chain to disable Windows Defender to evade detection. The attackers [...]

News

Posted on September 15, 2021 by Mash

Firefox Bypasses Windows 11 Browser To Make It Easier To Change Default Browser

A new interface introduced in Windows 11 made changing the default programs a lot more difficult. That also includes changing [...]

News

Posted on September 14, 2021 by Mash

Threat Actors Sharing MSHTML Zero-day Exploits

Microsoft has recently disclosed MSHTML zero-day vulnerability that allows threat actors to create malicious documents, including Office and RTF docs, [...]

News

Posted on September 13, 2021 by Mash

Windows MSHTML Zero-day Exploited To Take Over Corporate Networks

Internet Explorer MSHTML remote code execution vulnerability, tracked as CVE-2021-40444, was recently disclosed by Microsoft without many details since it [...]

News

Posted on September 10, 2021 by Mash

Babuk Ransomware Source Code Leaked On Hacker Forum

Babuk Locker or Babyk is a ransomware operation launched in early 2021 that was stealing and encrypting data from big [...]

News

Posted on September 4, 2021 by Mash

Recently Disclosed Atlassian Confluence Flaw Is Actively Exploited By Attackers To Install Cryptominers

Recently disclosed Atlassian Confluence remote code execution vulnerability is currently being actively exploited by hackers to install cryptominers. Atlassian Confluence [...]

News

Posted on September 3, 2021 by Mash

Security Guide: Preventing Windows Plug-and-Play Auto-Installation of Insecure Apps

Recently security researchers have discovered that is very easy to gain SYSTEM privileges using Razer mouse for example, since after [...]

News

Posted on September 2, 2021 by Mash

Threat Actors Selling a Tool To Hide Malware in AMD, NVIDIA GPUs

Recently some threat actors have started switching towards malware that is able to execute code from the GPU of the [...]

News

Posted on September 1, 2021 by Mash

New Microsoft Exchange Vulnerability Allows Attackers To Access User's Emails

A new vulnerability in Microsoft Exchange Server allows threat actors to access emails from a target account by crafting a [...]

News

Posted on August 31, 2021 by Mash

Microsoft Warns Users of ProxyShell Vulnerabilities Currently Being Exploited

ProxyShell is a collection of three security vulnerabilities discovered by Devcore security researcher Orange Tsai during Pwn2Own 2021 hacking contest. Microsoft [...]

News

Posted on August 27, 2021 by Mash

Malicious WhatsApp Mod Delivers Infects Victims With xHelper Trojan

According to Kaspersky researchers, a malicious version of the FMWhatsappWhatsApp mod has been distributing Triadatrojan payload that infects its victims [...]