Microsoft Updates Mitigation for Exchange Server Zero-Days
Microsoft today updated its mitigation measures for two recently disclosed and actively exploited zero-day vulnerabilities in its Exchange Server technology after researchers found its initial guidance could be easily bypassed.
Microsoft's...
Steam Gaming Phish Showcases Browser-in-Browser Threat
Attackers have been targeting users of the popular Steam online gaming platform by using an emerging phishing tactic that deploys authentic-looking fake browser windows to steal credentials and take...
Bumblebee Malware Loader’s Payloads Significantly Vary by Victim System
A new analysis of Bumblebee, a particularly pernicious malware loader that first surfaced this March, shows that its payload for systems that are part of an enterprise network is...
LA School District Ransomware Attackers Now Threaten to Leak Stolen Data
The clock is ticking for the Los Angeles Unified School District (LAUSD) — the second largest in the country. Following a ransomware attack at the beginning of the month,...
SolarMarker Attack Leverages Weak WordPress Sites, Fake Chrome Browser Updates
Researchers have discovered the cyberattack group behind the SolarMarker malware targeting a global tax consulting organization with a presence in the US, Canada, the UK, and Europe, which is...
Microsoft Confirms Pair of Blindsiding Exchange Zero-Days, No Patch Yet
Microsoft is fast-tracking patches for two Exchange Server zero-day vulnerabilities reported overnight, but in the meantime, businesses should be on the lookout for attacks. The computing giant said in...
Cybercriminals See Allure in BEC Attacks Over Ransomware
While published trends in ransomware attacks have been contradictory — with some firms tracking more incidents and other fewer — business email compromise (BEC) attacks continue to have proven...
Reshaping the Threat Landscape: Deepfake Cyberattacks Are Here
Malicious campaigns involving the use of deepfake technologies are a lot closer than many might assume. Furthermore, mitigation and detection of them are hard.
A new study of the use...
Dangerous New Attack Technique Compromising VMware ESXi Hypervisors
VMware issued urgent new mitigation measures and guidance on Sept. 29 for customers of its vSphere virtualization technology after Mandiant reported detecting a China-based threat actor using a troubling...
Ransomware Attacks Continue Increasing: 20% of All Reported Attacks Occurred in the Last 12...
PITTSBURGH, Sept. 26, 2022 /PRNewswire/ -- Nearly a quarter of businesses have suffered a ransomware attack, with a fifth occurring in the past 12 months, according to a latest...