Mash – Page 23 – Wildcat Cyber Patrol

Russian Hackers Breach Multiple French IT Providers by Exploiting Old Centreon Software

According to the report by French cybersecurity agency ANSSI, Russian hackers have successfully managed to exploit Centreon Software to infiltrate [...]

News

Centreon

Posted on February 18, 2021 by Mash

Telegram's privacy feature failed to delete self-destructing video files

Telegram's 'Secret chat' feature offers increased privacy than the standard chats. Security researcher Dhiraj Mishra has discovered a vulnerability in [...]

News

Posted on February 17, 2021 by Mash

Android spyware strains connected to state-sponsored hacking group

According to cybersecurity firm Lookout, two malware strains dubbed Hornbill and SunBird, have been linked to Confucius hacking group, which [...]

News

Posted on February 13, 2021 by Mash

Copycats imitate novel supply chain attack

A recent supply chain attack was done by security researcher Alex Birsan, who managed to infiltrate 35 big tech companies [...]

News

Posted on February 13, 2021 by Mash

Avaddon ransomware fixes free decryption flaw

Avaddon ransomware gang has fixed a flaw that allowed victims to recover their files without paying a ransom, which was [...]

News

Posted on February 12, 2021 by Mash

BazarBackdoor malware has been rewritten in Nim to evade antivirus

TrickBot's BazarBackdoor has been actively distributed through spam campaigns. BazarBackdoor allows hackers to get remote access to the computer to spread [...]

News

Posted on February 12, 2021 by Mash

Microsoft fixed bug allowing attackers to trigger BSOD crashes

The bug that lets attackers crash Windows 10 by creating specific downloads, the system would crash once the folder is [...]

How-to

Posted on February 11, 2021 by Mash

Microsoft forces secure RPC to address Zerologon attacks

Zerologon is a critical Netlogon Windows server process security flow that allows hackers to elevate privileges to domain administrators and [...]

News

Posted on February 11, 2021 by Mash

CD Projekt Red got hit with HelloKitty ransomware, source code stolen

CD Projekt Red has disclosed that they were a target of a cyberattack of a ransomware attack and got their [...]

News

Posted on February 11, 2021 by Mash

Hackers gained access to Oldsmar water treatment system, attempted to poison the town

Last Friday hackers managed to breach the water facility for the city of Oldsmar, Florida and attempted to increase the [...]

News

Posted on February 9, 2021 by Mash

Phishing campaign uses Morse code to hide malicious URLs

Recent phishing campaign has surprised security researchers by utilizing Morse code to bypass security mail getaways and mail filters. This [...]

News

Posted on February 8, 2021 by Mash

Mozilla releases Firefox 85.0.1, fixes Windows 10 NTFS corruption bug

Mozilla has fixed a recently reported bug that allowed non-privileged users to mark an NTFS volume as dirty. That caused [...]

News

Posted on February 7, 2021 by Mash

Malicious extension steals user data by abusing the Chrome sync feature

Chrome sync is a browser feature that automatically synchronizes user's bookmarks, history, passwords, and other settings after they log in [...]

News

chrome

Posted on February 6, 2021 by Mash

Fake WhatsApp app allows hackers to spy on iPhone users

Cybersecurity researchers at Citizen Lab and journalists at Motherboard has spotted a fake WhatsApp app, linked to an Italian company [...]

News

Posted on February 6, 2021 by Mash

StormShield cybersecurity company got hacked, firewall source code stolen

Leading French cybersecurity firm StormShield has disclosed that their systems got hacked, resulting in a threat actor being able to [...]

News

StormShield

Posted on February 5, 2021 by Mash

Chrome zero-day exploited in the wild has been fixed

Google has addressed zero-day vulnerability for Chrome version 88.0.4324.150 that has been actively exploited recently. The vulnerability has been tracked [...]

News

Posted on February 5, 2021 by Mash

Cisco has fixed critical code execution bugs in SMB VPN routers

Cisco has addressed pre-auth remote code execution (RCE) vulnerabilities affecting several VPN routers Those vulnerabilities allowed attackers to execute arbitrary [...]

News

Posted on February 4, 2021 by Mash

Chrome updates detected as backdoors by Microsoft Defender

Microsoft Defender detects Chrome updates as PHP backdoors because of the Slovenian localization file bundled with the Chrome installer. The [...]

News

Posted on February 4, 2021 by Mash

SonicWall SMA 100 zero-day vulnerability exploited in the wild

According to the report by cybersecurity company NCC Group, SonicWall zero-day exploit has been used in the wild. NCC Group [...]

News

SonicWall

Posted on February 2, 2021 by Mash

Malicious Home Depot ad gets placed as a top Google search result

There has been a lot of different campaigns using malicious ads in the past. The ads disguised themselves as the [...]

News

Posted on January 31, 2021 by Mash

Fonix ransomware shuts down their operations, releases master decryption key

Fonix ransomware also known as Xonif and FonixCrypter has been active since June 2020 and has been steadily increasing the [...]

News

Fonix

Posted on January 30, 2021 by Mash

New Pro-Ocean cryptojacking malware targets Apache, Oracle and Redis servers

Pro-Ocean is a new cryptojacking malware by Rocke hackers with self-spreading capabilities, that can blindly throw exploits at discovered vulnerable [...]

News

Posted on January 30, 2021 by Mash

DPRK hacking group targets security researchers with Chrome exploit

DPRK group named 'Zinc' or 'Lazarus' has been targeting vulnerability researchers according to Microsoft. According to Microsoft research, the group [...]

News

Posted on January 29, 2021 by Mash

Google Chrome now blocks 7 additional ports to defend against NAT Slipstreaming vulnerability

Network Address Translation (NAT) is a feature, used to reduce the amount of public IP addresses and to increase security. [...]

News

Posted on January 29, 2021 by Mash

New Linux SUDO vulnerability lets local users gain root privileges

Sudo is a Unix program that lets system administrators provide limited root privileges to normal users listed in the sudoers [...]

News

Posted on January 27, 2021 by Mash

3 new iOS zero-day vulnerabilities spotted exploited in the wild

Apple has released an update for three recently reported vulnerabilities that allow hackers to elevate privileges and achieve remote code [...]

News

Apple

Posted on January 27, 2021 by Mash

Third-party fix for NTFS Windows 10 bug got released

OSR, a software development company specializing in Windows internals, has released an open-source filter driver, preventing the NTFS bug abuse, [...]

News

Posted on January 26, 2021 by Mash

North Korean hacking group is targeting security researchers

According to Google's Threat Analysis Group report, a North Korean government-backed hacking group is targeting security researchers, attempting to infect [...]

News

Posted on January 26, 2021 by Mash

MrbMiner crypto-jacking campaign linked to Iranian software company

Sophos researchers have investigated the brute-force attacks on MSSQL servers with the intent to compromise them and install crypto-mining malware [...]

News

Posted on January 24, 2021 by Mash

SonicWall firewall maker hacked using zero-day vulnerability in its VPN device

Security manufacturer SonicWall has issued an urgency notice on threat actors abusing zero-day vulnerability in their Secure Mobile Access (SMA) [...]

News

Posted on January 24, 2021 by Mash

Windows Remote Desktop Protocol servers are abused by attackers to amplify DDOS attacks

The Microsoft Remote Desktop Protocol service is a built-in Windows service running on TCP/3389 and/or UDP/3389 that enables authenticated remote [...]