Russia’s APT28 Launches Nuke-Themed Follina Exploit Campaign
Russia’s notorious advanced persistent threat group APT28 is the latest in a growing number of attackers trying to exploit the “Follina” vulnerability in the Microsoft Support Diagnostic Tool (MSDT) in...
RIG Exploit Kit Replaces Raccoon Stealer Trojan With Dridex
The cybercriminals behind the RIG Exploit Kit earlier this year traded out the credential-stealer Trojan Raccoon Stealer after its lead developer was killed in the Russian invasion of Ukraine.
According to analysts with Bitdefender, the...
China-Linked ToddyCat APT Pioneers Novel Spyware
A threat group that may have been among the first to exploit the ProxyLogon zero-day vulnerability in Exchange Servers last year is using a pair of dangerous and previously...
56 Vulnerabilities Discovered in OT Products From 10 Different Vendors
A new analysis of data from multiple sources has uncovered a total of 56 vulnerabilities in OT products from 10 vendors, including notable ones such as Honeywell, Siemens, and...
BRATA Android Malware Evolves Into an APT
An Android-based banking Trojan known as BRATA (short for Brazilian RAT Android) has evolved to incorporate new phishing techniques and capabilities to acquire GPS, overlay, SMS, and device management permissions.
The...
Gartner: Regulation, Human Costs Will Create Stormy Cybersecurity Weather Ahead
Security teams should prepare for what researchers say will be a challenging environment through 2023, with increased pressure from government regulators, partners, and threat actors.
Gartner kicked off its Security & Risk Management Summit with...
DDoS Attacks Delay Putin Speech at Russian Economic Forum
Billed as the "Russian Davos," the St. Petersburg Economic Forum was stalled on Friday by a distributed denial-of-service (DDoS) attack, delaying a speech from Russian President Vladimir Putin for...
Name That Toon: Cuter Than a June Bug
Summer is here, the beaches are filling up, and even our multilegged friends are ready for some R&R. Or maybe, just maybe, they're hoping to catch us with our guards down....
Atlassian Confluence Server Bug Under Active Attack to Distribute Ransomware
A recently disclosed critical remote code execution (RCE) vulnerability in Atlassian's Confluence Server collaboration platform is now under active attack, in a spate of attacks bent on deploying a variety of...
DeadBolt Ransomware Actively Targets QNAP NAS Devices — Again
QNAP network-attached storage (NAS) devices running out-of-date software are under snowballing numbers of active attacks in a new DeadBolt ransomware campaign, an advisory has warned.
The company is investigating the...
