Mash – Page 19 – Wildcat Cyber Patrol

Hackers Compromising Windows IIS Servers To Spread TeamViewer Malware

Threat actors are compromising Windows IIS servers to add expired certificate notification pages that bait users into downloading a fake [...]

News

Posted on September 21, 2021 by Mash

Ongoing Zloader Attacks Disable Windows Defender To Hide Its Presence

A new ongoing Zloader attack is using a new infection chain to disable Windows Defender to evade detection. The attackers [...]

News

Posted on September 15, 2021 by Mash

Firefox Bypasses Windows 11 Browser To Make It Easier To Change Default Browser

A new interface introduced in Windows 11 made changing the default programs a lot more difficult. That also includes changing [...]

News

Posted on September 14, 2021 by Mash

Threat Actors Sharing MSHTML Zero-day Exploits

Microsoft has recently disclosed MSHTML zero-day vulnerability that allows threat actors to create malicious documents, including Office and RTF docs, [...]

News

Posted on September 13, 2021 by Mash

Windows MSHTML Zero-day Exploited To Take Over Corporate Networks

Internet Explorer MSHTML remote code execution vulnerability, tracked as CVE-2021-40444, was recently disclosed by Microsoft without many details since it [...]

News

Posted on September 10, 2021 by Mash

Babuk Ransomware Source Code Leaked On Hacker Forum

Babuk Locker or Babyk is a ransomware operation launched in early 2021 that was stealing and encrypting data from big [...]

News

Posted on September 4, 2021 by Mash

Recently Disclosed Atlassian Confluence Flaw Is Actively Exploited By Attackers To Install Cryptominers

Recently disclosed Atlassian Confluence remote code execution vulnerability is currently being actively exploited by hackers to install cryptominers. Atlassian Confluence [...]

News

Posted on September 3, 2021 by Mash

Security Guide: Preventing Windows Plug-and-Play Auto-Installation of Insecure Apps

Recently security researchers have discovered that is very easy to gain SYSTEM privileges using Razer mouse for example, since after [...]

News

Posted on September 2, 2021 by Mash

Threat Actors Selling a Tool To Hide Malware in AMD, NVIDIA GPUs

Recently some threat actors have started switching towards malware that is able to execute code from the GPU of the [...]

News

Posted on September 1, 2021 by Mash

New Microsoft Exchange Vulnerability Allows Attackers To Access User's Emails

A new vulnerability in Microsoft Exchange Server allows threat actors to access emails from a target account by crafting a [...]

News

Posted on August 31, 2021 by Mash

Microsoft Warns Users of ProxyShell Vulnerabilities Currently Being Exploited

ProxyShell is a collection of three security vulnerabilities discovered by Devcore security researcher Orange Tsai during Pwn2Own 2021 hacking contest. Microsoft [...]

News

Posted on August 27, 2021 by Mash

Malicious WhatsApp Mod Delivers Infects Victims With xHelper Trojan

According to Kaspersky researchers, a malicious version of the FMWhatsappWhatsApp mod has been distributing Triadatrojan payload that infects its victims [...]

News

Posted on August 26, 2021 by Mash

Mirai-based Botnet Targets SDK Software Vulerability

A Mirai-based botnet is targeting hundreds of thousands of Realtek-based devices that are using SDK software. The malware campaign became [...]

News

Posted on August 25, 2021 by Mash

Razer Synapse Zero-day Allows User To Gain Windows 10 Admin Rights By Plugging In a Mouse

Plugging a Razer device into the Windows 10 or Windows 11 makes the system download and install Razer Synapse software, [...]

News

Posted on August 23, 2021 by Mash

Emsioft Has Released A Decryptor For SynAck Ransomware

SynAck ransomware gang has been known since 2017, however recently they rebranded as the El_Cometa gang and released the documentation [...]

News

Posted on August 21, 2021 by Mash

Malware Campaign Baits Users Into Bypassing Browser Warnings Using Clever Captcha

Malware campaign that uses a clever captcha to download the Gozi (aka Ursnif) banking trojan has been discovered by the [...]

News

Posted on August 19, 2021 by Mash

CISA Warns Of BaldAlloc Security Flaws Affecting Critical Infrastructure

According to CISA, security flaws known as BaldAlloc are affecting BlackBerry's QNX Real Time Operating System (RTOS) that is used [...]

News

Posted on August 19, 2021 by Mash

Hacker Behing Poly Network Heist Is Giving Back Some Stolen Funds

According to the Chinese decentralized finance (DeFi) platform Poly Network shared two hours ago, the hacker behind the recent Poly [...]

News

Posted on August 12, 2021 by Mash

Microsoft Warns Users Of A New Windows Print Spooler Bug

According to Microsoft's advisory, Windows Print Spooler zero-day allows local attackers to gain SYSTEM privileges on a computer. This zero-day [...]

News

Posted on August 12, 2021 by Mash

Apple Released A Fix For iPhone's and Mac's Zero-day Exploited In The Wild

Apple has released security updates that include a fix for the zero-day vulnerability affecting iPhones, Macs, and iPads. The vulnerability [...]

News

Apple

Posted on July 27, 2021 by Mash

XCSSET Malware Steals Chrome Passwords And Telegram Accounts, Targets macOS Developers

Security researchers have reported that constantly evolving macOS malware XCSSET steals Google Chrome passwords and Telegram accounts by infecting legitimate [...]

News

macOS

Posted on July 24, 2021 by Mash

NTLM Attack PetitPotam Lets Hackers Take Over Windows Domains

A new NTLM attack called PetitPotam allows hackers to take over a domain controller, and thus an entire Windows domain. [...]

News

Posted on July 24, 2021 by Mash

NPM Package Steals Chrome Credentials By Using Legit Password Recovery Tools

ReverseLabs researchers have disclosed their findings on two npm packages that steal passwords from the Google Chrome browser. The packages [...]

News

Posted on July 22, 2021 by Mash

Old HP, Xerox, and Samsung Printer Vulnerability Gives Hackers Admin Rights

A 16-year-old security vulnerability found in an HP, Xerox, and Samsung printers driver allows attackers to gain admin rights on [...]

News

Posted on July 21, 2021 by Mash

NSO Group Spyware Found In Iphones Running Latest iOS

According to Human rights non-governmental organization Amnesty International and non-profit project Forbidden Stories report, the spyware made by Israeli surveillance [...]

News

Posted on July 20, 2021 by Mash

New Windows Print Spooler Vulnerability Involves Remote Print Servers

New Windows Print Spooler vulnerability allows a threat actor to gain administrative privileges through a remote server under the attacker's [...]

News

Windows Print Spooler

Posted on July 19, 2021 by Mash

D-Link Fixes Multiple Password Router Vulnerabilities

D-Link has issued a firmware hotfix to address multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Those vulnerabilities allowed attackers to [...]

News

D-LINK

Posted on July 17, 2021 by Mash

REvil Has Disappeared From The Internet

REvil, one of the world's most popular and known ransomware has vanished from the Internet, according to CNBC. All REvil [...]

News

REvil

Posted on July 15, 2021 by Mash

China-based Attackers Abuse SolarWinds Zero-day Targeting Software Compaines And US Defence Orgs

Recently Microsft has revealed a vulnerability in SolarWinds Serv-U FTP servers allowing for the remote code execution, and tonight Microsoft [...]

News

Posted on July 14, 2021 by Mash

SolarWinds Warns Users To Update Their Systems To Patch Serv-U Vulnerability

SolarWinds has patched critical Serv-U remote code execution vulnerability that has been actively exploited by the single threat actor, targeting [...]

News

Posted on July 13, 2021 by Mash

Check If Your PC Supports Windows 11 With Checkit Tool

Microsoft has released a list of the system requirements for Windows 11, leaving a lot of PC users confused. To [...]

News

Windows 11

Posted on July 10, 2021 by Mash

Hackers Pushing Cobalt Strike Malware Disguised As Kaseya VSA Security Update

Threat actors are actively pushing Cobalt Strike payloads disguised as Kaseya VSA security updates to steal sensitive users' data, targeting [...]

News

Posted on July 8, 2021 by Mash

Microsoft Releases Emergency Update For Windows PrintNightmare Zero-day

KB5004945 emergency security update has been released by Microsoft to fix the recent PrintNightmare zero-day vulnerability, but the patch still [...]

News

Posted on July 7, 2021 by Mash

Google Removes Nine Android Apps With 5.8 Million Installs For Stealing Facebook Passwords

Google has removed 9 popular Android apps that were confirmed to steal users' Facebook passwords. The removed apps are Processing [...]

News

Posted on July 4, 2021 by Mash

Massive REvil Ransomware Cyberattack Hits 200 Companies

REvil ransomware attack reportedly affects multiple managed service providers and their clients through a reported Kaseya supply-chain attack. Eight known [...]

News

Posted on July 3, 2021 by Mash

CISA Warns To Disable Windows Print Spooler On Servers Not Used For Printing

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a notification regarding the critical PrintNightmare zero-day vulnerability and warned admins [...]

News

Posted on July 2, 2021 by Mash

TPM Diagnostics Tool Becomes Windows 11 Optional Feature

Windows 11 brings a new optional feature to query the data stored on a device's TPM security processor called 'TPM [...]

News

Windows 11

Posted on July 1, 2021 by Mash

Netgear Router Bugs Lead To Corporate Breaches, Warns Microsoft

Microsoft has discovered firmware vulnerabilities in certain Netgear router models that could lead to network breaches. Those vulnerabilities impact DGN2200v1 [...]

News

Posted on July 1, 2021 by Mash

Windows Print Spooler Vulnerability Allows RCE, Domain Takeover

Technical details and a proof-of-concept (PoC) exploit have been accidentally leaked for a currently unpatched vulnerability that affects Windows Print [...]