Hackers Begin Weaponizing TCP Middlebox Reflection for Amplified DDoS Attacks
By: Ravie Lakshmanan
Distributed denial-of-service (DDoS) attacks leveraging a new amplification technique called TCP Middlebox Reflection have been detected for the first time in the wild, six months after the...
China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks
By: Ravie Lakshmanan
A previously undocumented espionage tool has been deployed against selected governments and other critical infrastructure targets as part of a long-running espionage campaign orchestrated by China-linked threat...
Microsoft Finds FoxBlade Malware Hit Ukraine Hours Before Russian Invasion
By: Ravie Lakshmanan
Update: It's worth noting that the malware Microsoft tracks as FoxBlade is the same as the data wiper that's been denominated HermeticWiper (aka KillDisk).
Microsoft on Monday disclosed...
Russia-Ukraine War: Phishing, Malware and Hacker Groups Taking Sides
By: Ravie Lakshmanan
Ukraine's Computer Emergency Response Team (CERT-UA) has warned of Belarusian state-sponsored hackers targeting its military personnel and related individuals as part of a phishing campaign mounted amidst...
Putin Warns Russian Critical Infrastructure to Brace for Potential Cyber Attacks
By: Ravie Lakshmanan
The Russian government on Thursday warned of cyber attacks aimed at domestic critical infrastructure operators, as the country's full-blown invasion of Ukraine enters the second day.
In addition...
Iran’s MuddyWater Hacker Group Using New Malware in Worldwide Cyber Attacks
By: Ravie Lakshmanan
Cybersecurity agencies from the U.K. and the U.S. have laid bare a new malware used by the Iranian government-sponsored advanced persistent threat (APT) group in attacks targeting...
New “SockDetour” Fileless, Socketless Backdoor Targets U.S. Defense Contractors
By: Ravie Lakshmanan
Cybersecurity researchers have taken the wraps off a previously undocumented and stealthy custom malware called SockDetour that targeted U.S.-based defense contractors with the goal of being used...
New Wiper Malware Targeting Ukraine Amid Russia’s Military Operation
By: Ravie Lakshmanan
Cybersecurity firms ESET and Broadcom's Symantec said they discovered a new data wiper malware used in fresh attacks against hundreds of machines in Ukraine, as Russian forces...
Warning — Deadbolt Ransomware Targeting ASUSTOR NAS Devices
By: Ravie Lakshmanan
ASUSTOR network-attached storage (NAS) devices have become the latest victim of Deadbolt ransomware, less than a month after similar attacks singled out QNAP NAS appliances.
In response to...
Hackers Backdoor Unpatched Microsoft SQL Database Servers with Cobalt Strike
By: Ravie Lakshmanan
Vulnerable internet-facing Microsoft SQL (MS SQL) Servers are being targeted by threat actors as part of a new campaign to deploy the Cobalt Strike adversary simulation tool...
