Mash – Page 22 – Wildcat Cyber Patrol

State Hackers Are Targeting Fortinet FortiOS Servers With Multiple Exploits, Warns FBI, CISA

The Joint Cybersecurity Advisory (CSA) published today by the FBI and CISA warns administrators and users of APT (advanced persistent [...]

News

Posted on April 3, 2021 by Mash

Researcher Uses Coinhive Domain To Warn Users About Hacked Websites

Coinhive was an in-browser crypto mining platform that allowed websites to inject JavaScript code into websites to mine Monero cryptocurrency [...]

News

Coinhive

Posted on April 2, 2021 by Mash

BazarCall Malware Is Distributed Via Fake Call Centers

The malware BazarCall has been distributed by fake call centers since January 2021. Threat actors use that malware to install [...]

News

BazarCall

Posted on April 1, 2021 by Mash

New Android Malware Disguised As System Update Steals Data From Users

New malware with extensive spyware capabilities spies on users through infected Android devices. The spyware triggers when the data is [...]

News

Posted on March 31, 2021 by Mash

Apple Has Fixed iOS Zero-day Vulnerability Actively Exploited In The Wild

The vulnerability tracked as CVE-2021-1879 was discovered in the Webkit browser engine and allowed hackers to launch cross-site scripting attacks. [...]

News

Posted on March 27, 2021 by Mash

Cloudflare's New Feature Protects Sites From JavaScript-based Attacks

Regular cyberattacks introduce JavaScript into the website to redirect users to malicious sites, exploit vulnerabilities, and steal user's submitted data, [...]

News

Posted on March 26, 2021 by Mash

Google Has Removed ClearURL Extension From The Chrome Web Store.

ClearURLs is a browser extension that automatically removes tracking elements from URLs, which according to the developer, helps to protect [...]

News

Posted on March 25, 2021 by Mash

Purple Fox Malware Is Back With Worm-like Capabilities

Purple Fox malware that was previously distributed by phishing emails has added a worm module to its list of capabilties [...]

News

Posted on March 24, 2021 by Mash

Hacking Group Targets Windows, iOS, Android Users Using 11 Zero-Days

Google's zero-day bug-hunting team Project Zero reports that the hacking group launched several campaigns targeting Windows, iOS, Android throughout 2020, [...]

News

Posted on March 21, 2021 by Mash

REvil Now Can Encrypt Files In Safe Mode

REvil ransomware now has 'Windows Safe Mode' encryption mode - the ransomware can encrypt files in Windows Safe Mode to [...]

News

REvil

Posted on March 20, 2021 by Mash

Acer Hit By REvil Ransomware Attack, Hackers Demand Huge Ransom

Acer is a Taiwanese electronics and computer maker specializing in laptops, desktops, and monitors. The company has been hit by [...]

News

Acer
REvil

Posted on March 20, 2021 by Mash

New SolarWinds Activity Detection Tool Released By CISA

The Cybersecurity and Infrastructure Security Agency (CISA) has created a new tool to detect SolarWinds malicious activity in enterprise environments. [...]

News

Posted on March 19, 2021 by Mash

Malicious Xcode Project XcodeSpy Targets iOS Devs In Supply-Chain Attack

XcodeSpy malware targets iOS devs and install macOS backdoor on the victim's device. Xcode is a development environment created by [...]

News

Posted on March 19, 2021 by Mash

Researcher Shows The Method Of Hiding ZIP, MP3 Files Inside Twitter Images

Security researcher David Buchanan has demonstrated a method of storing MP3 and ZIP data inside the Twitter image. The 6 [...]

News

Posted on March 18, 2021 by Mash

Microsoft Released One-Click Exchange On-Premises Tool To Help Mitigate ProxyLogon Vulnerabilities

Recently Microsoft has disclosed four vulnerabilities that are actively used together in attacks against Microsoft Exchange. Those vulnerabilities are now [...]

News

Posted on March 17, 2021 by Mash

Microsoft Releases Temporary Fix For Windows 10 BSOD Printing Crashes

Microsoft has provided a temporary fix for the bug that causes Windows 10 to crash when printing. The bug appears [...]

News

Microsoft

Posted on March 14, 2021 by Mash

Microsoft's Annoying Pop-Up Ads Ignore Ad Blockers

Microsoft's known strategy to aggressively advertise their new features with pop-up ads is back, and even ad blockers can't do [...]

News

Microsoft

Posted on March 13, 2021 by Mash

Microsoft Exchange ProxyLogon Exploits Are Now Used By Cryptomining Software

The operators of Lemon_Duck, a cryptomining botnet targeting enterprise networks, are now using Microsoft Exchange Proxylogon exploits in their attacks. [...]

News

Lemon_Duck

Posted on March 13, 2021 by Mash

Chinese state hackers target Linux systems with new backdoor RedXOR

According to Intezer security researchers, a previously undocumented backdoor malware RedXOR with links to Chinese hacking groups is used in [...]

News

Posted on March 12, 2021 by Mash

OVH Data Center Burns Down, Major Web Services Inaccessible

OVH data centers have been destroyed by fire in a major incident. OVH is the third-largest provider in the world, [...]

News

Posted on March 11, 2021 by Mash

New Microsoft PowerShell Script Checks Exchange Servers For ProxyLogon Hacks

On March 2nd Microsoft released an emergency security update to fix four ProxyLogon vulnerabilities that were actively used in attacks [...]

News

Posted on March 7, 2021 by Mash

Three New Malware Strains Used By SolarWinds Hackers Revealed By Microsoft

Microsoft has revealed the data on malware that SolarWinds hackers deployed as the second-stage payloads. Three new malware strains are [...]

News

SolarWinds

Posted on March 5, 2021 by Mash

New Backdoor Malware Linked To SolarWinds Hackers Discovered By FireEye

FireEye has discovered a sophisticated backdoor malware on the servers of the organization that got compromised in SolarWinds supply-chain attack. [...]

News

SolarWinds

Posted on March 5, 2021 by Mash

Creating UI Workflow With Microsoft Power Automate Desktop

Power Automate Desktop is available for all and allows users to create UI workflow fairly easily. To use Power Automate [...]

How-to

Posted on March 4, 2021 by Mash

Accellion Zero-day Allows Hackers To Breach Cybersecurity Firm Qualys

Cybersecurity company Qualys has suffered a data breach due to the exploitation of the zero-day vulnerability in their Accellion FTA [...]

News

Posted on March 4, 2021 by Mash

Microsoft Fixes Four Zero-day Exchange Vulnerabilities Used In Targeted Attacks

Microsoft has fixed four actively exploited zero-day bugs for Microsoft Exchange. Those four vulnerabilities allowed attackers to gain access to [...]

News

Posted on March 3, 2021 by Mash

Hackers Push Malware via Hacked WordPress Sites and Black Hat SEO

Recently Gootkit data stealer has evolved into a complex and stealthy framework and got itself a name Gootloader, which is [...]

How-to

Posted on March 2, 2021 by Mash

Project Zero Shares PoC Exploit For Critical RCE Graphics Bug

Google's oday bug-hunting team Project Zero has shared a proof-of-concept (PoC) exploit code for a critical RCE (Remote Code Execution) [...]

News

Posted on February 28, 2021 by Mash

Windows 10 Sun Valley Update - What's Coming

Windows 10 'Sun Valley' UI refresh also known as version 21H2 update is reportedly coming to Windows systems in the [...]

News

Posted on February 28, 2021 by Mash

New Ryuk Ransomware Variant Can Self-Spread To Other Windows Lan Devices

French Cybersecurity Agency has discovered a new Ryuk ransomware variant with worm-like capabilities that allow it to spread to other [...]

News

Ryuk

Posted on February 27, 2021 by Mash

Hackers Hijack Gmail Accounts Using Malicious Firefox Extension

Chinese-backed hacking group TA413 is believed to coordinate the recent cyber-espionage campaign targeting Tibetan organizations with malicious Firefox extension with [...]

News

Posted on February 27, 2021 by Mash

Microsoft Has Open-Sourced CodeQL Queries To Scan Code For Malicious SolarWinds Implants

Previously Microsoft has disclosed that their systems were compromised in SolarWinds supply-chain attack and allowed attackers to gain access to [...]

News

SolarWinds

Posted on February 26, 2021 by Mash

North Korean Hackers Target Defense Industry With ThreatNeedle Backdoor

The cyber espionage campaign targeting the defense industry with custom backdoor malware ThreatNeedle to steal sensitive information was coordinated by [...]

News

Posted on February 26, 2021 by Mash

NASA And The FAA Added To The List Of The SolarWinds Breach Victims

According to Washington Post, NASA and the FAA have also been compromised in the recent SolarWinds supply-chain attack. US government [...]

News

SolarWinds

Posted on February 25, 2021 by Mash

Vietnam-backed Hacking Group APT32 Target Human Rights Defenders

Vietnam-backed hacking group APT32 has coordinated several attacks against Vietnamese human rights defenders between February and 2018 and November 2020. [...]