Mash – Page 24 – Wildcat Cyber Patrol

Project Zero team discloses a hacking campaign targeting Windows and Android users

Project Zero, Google's zero-day bug-hunting team has discovered a campaign coordinated by a highly sophisticated actor, targeting Windows and Android [...]

News

Posted on January 14, 2021 by Mash

Microsoft patches Microsoft Defender antivirus zero-day vulnerability

Microsoft Defender vulnerability, actively exploited in the wild by threat actors, has been patched by Microsoft. The vulnerability tracked as [...]

News

Microsoft

Posted on January 13, 2021 by Mash

SolarLeaks website claims to sell the data stolen in SolarWinds attacks

A website SolarLeaks dot net is selling the data stolen from the companies, suffered from the SolarWinds breach, the attack [...]

News

Posted on January 13, 2021 by Mash

Cybersecurity team Bitdefender released free decryptor for the DarkSide ransomware

Romanian cybersecurity company Bitdefender has released a free decryptor for the DarkSide ransomware, allowing victims to recover their files without [...]

How-to

Posted on January 12, 2021 by Mash

Cryptocurrency mining Mac malware OSAMiner uses AppleScripts to evade the research

A Cryptocurrency mining malware OSAMiner has been known since 2015, but researchers have trouble analyzing it because payloads are exported [...]

News

OSAMiner

Posted on January 12, 2021 by Mash

Chrome extension The Great Suspender isn't recommended to use anymore

The Great Suspender is a popular and useful Chrome extension, designed to improve the Google Chrome usage of RAM by [...]

News

Google Chrome

Posted on January 11, 2021 by Mash

Hackers gained remote control over the chastity belts devices using ransomware

The source code for the ChasityLock ransomware has become publicly available for research purposes after the attack that targeted male [...]

News

Posted on January 11, 2021 by Mash

Hackers behind the SolarWinds breach used password guessing

The US Cybersecurity and Infrastructure Security Agency (CISA) has stated that the hackers behind the SolarWinds attack has used password [...]

News

SolarWinds

Posted on January 9, 2021 by Mash

Nissan NA source code leaked due to exposed Git server with default admin credentials

The entire collection of Nissan North America source code got leaked because of the exposed Git server, protected with default [...]

News

Posted on January 9, 2021 by Mash

Ezuri crypter used by Linux threat actors to avoid detection

According to AT&T Alien Labs report, multiple malware authors are using Ezuri crypter to improve the antidetection of their malware. [...]

News

Ezuri
Linux

Posted on January 8, 2021 by Mash

WhatsApp Privacy Police update forces users to share their data with Facebook

Recent WhatsApp Privacy Policy update has faced its users with an ultimatum, either they accept sharing their data with Facebook, [...]

News

Posted on January 8, 2021 by Mash

Windows Core Polaris dev build has been leaked

Recent leak of Microsoft's Windows Core Polaris has proofed a series of rumors about Microsoft developing an OS for low [...]

News

Posted on January 4, 2021 by Mash

Google Chrome fixes a file locking bug on Windows 10 systems

Google Chrome has fixed a bug that caused Windows 10 antivirus to lock the newly created files, by not allowing [...]

News

Google Chrome

Posted on January 4, 2021 by Mash

Backdoor account found in Zyxel firewall

Zyxel has released a patch, fixing a critical vulnerability, tracked as CVE-2020-29583, concerning a hardcoded undocumented secret account, that could [...]

News

Zyxel

Posted on January 2, 2021 by Mash

Adobe Flash Player is not supported anymore

Adobe has stopped supporting their Flash Player on January 1, 2021. Adobe will not be posting any updates to Flash [...]

How-to

Adobe

Posted on January 2, 2021 by Mash

CISA releases Sparrow - a compromised apps' detection tool Azure and Microsoft 365 environments

The new tool named Sparrow released by the Cybersecurity and Infrastructure Security Agency (CISA) as an answer to the recent [...]

News

Posted on December 29, 2020 by Mash

New GitHub based malware uses Word files and Imgur images to decode a Cobalt Strike script

A new type of malware using Word files with macros to download a PowerShell script from GitHub, has been discovered [...]

News

CobaltStrike

Posted on December 29, 2020 by Mash

SolarWinds released updated advisory for SUPERNOVA malware

SolarWinds has suffered a cyberattack, which made attackers capable of modifying a legitimate SolarWinds Orion BusinessLayer DLL file to include [...]

News

Posted on December 27, 2020 by Mash

Threat actors unsuccessfully attempted to read CrowdStrike emails

Cybersecurity company CrowdStrike was warned by Microsoft team that hackers tried to read the company's emails using a compromised Microsoft [...]

News

Posted on December 26, 2020 by Mash

How to enable NVIDIA's new Ultra Low Latency Mod for Windows 10

Ultra Low Latency mode allows frames to be submitted into the render queue before GPU needs them, which helps to [...]

NVIDIA

Posted on December 25, 2020 by Mash

Israeli cybersecurity company Cellebrite claims to decrypt Signal messages

Signal is one of the most popular highly encrypted messaging apps, especially valued by people who want to protect their [...]

News

Posted on December 24, 2020 by Mash

Old fixed Windows vulnerability is abused again

The vulnerability CVE-2020-0986 was exploited as a zero-day in May and was presumably fixed since then, however, the security researchers [...]

News

Posted on December 24, 2020 by Mash

List of organizations where SolarWinds and Sunburst were deployed has been revealed

The investigation over Solarwinds is still ongoing, and the most recent discovery, coming from the cybersecurity firm Truesec, includes the [...]

How-to

Posted on December 23, 2020 by Mash

SUPERNOVA backdoor found in SolarWinds cyberattack, likely from a second threat actor

SUPERNOVA is a webshell planted in the code of the Orion network and apps monitoring the platform, enabling adversaries to [...]

News

Posted on December 22, 2020 by Mash

Hackers use network of mobile device emulators to steal millions from online bank accounts

IBM Trusteer researchers have uncovered a massive fraud operation that leveraged a network of mobile device emulators to steal millions [...]

News

Posted on December 21, 2020 by Mash

Gitpaste-12 worm botnet is back with new tricks

Gitpaste-12 is a recently discovered worm botnet, that was known to host malicious payload on Pastebin and was spreading using [...]

News

Gitpaste-12

Posted on December 20, 2020 by Mash

Russian state-sponsored hacking group breached US think tank three time in a row

A recent attack via trojanized update for SolarWinds network was not the first successful attempt on compromising U.S. internal network [...]

News

Posted on December 19, 2020 by Mash

Top browser makers ban MitM HTTPS certificate

Google, Apple, Microsoft and Mozilla has agreed to ban MitM certificate, used by Kazakhstan government to spy on their citizens [...]

News

Posted on December 19, 2020 by Mash

Magecart malware dropper leaks list of targeted stores

Threat actors used dropper to deploy RAT (remote access trojan) on a compromised store websites, that are used to regain [...]

News

Magecart

Posted on December 19, 2020 by Mash

Malicious Chrome and Edge extensions hit over 3,000,000 installs

Malware-laced extensions, found by Avast Threat Intelligence researchers and disguised as a helper add-ons for Instagram, Facebook and Vimeo have [...]