Custom search

Windows Quick Assist Anchors Black Basta Ransomware Gambit

When abused by threat actors with sophisticated social-engineering chops, remote-access tools demand that enterprises remain sharp in both defense strategy and employee-awareness training.

Bleeping Computer

Kimsuky hackers deploy new Linux backdoor via trojanized installers

The North Korean hacker group Kimsuki has been using trojanized software packages to deliver a new Linux malware called Gomir in cyberespionage campaigns against targets in South Korea.

Bleeping Computer

Kimsuky hackers deploy new Linux backdoor in attacks on South Korea

The North Korean hacker group Kimsuki has been using a new Linux malware called Gomir that is a version of the GoBear backdoor delivered via trojanized software installers.

DarkReading

Patch Now: Another Google Zero-Day Under Exploit in the Wild

Google has rolled an emergency patch for CVE-2024-4947, the third Chrome zero-day it's addressed in the past week.

Bleeping Computer

14 hours ago

Create up-to-date visualizations with $230 off Microsoft Visio 2021

Turning your data into floor plans, diagrams, flow charts, and other visualizations should be an efficient process. This Microsoft Visio 2021 Professional instant download for Windows gives you all the tools you need for $19.97, $230 off the $250 MSRP now through the end of May 22nd.

The Hacker News

15 hours ago

Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines

Nearly a dozen security flaws have been discovered in the GE HealthCare Vivid Ultrasound product family.

Cyber Security News

15 hours ago

Earth Hundun Hacker Group Employs Advanced Tactics to Evade Detection

Earth Hundun, a notable Asia-Pacific malware organization, uses Waterbear and Deuterbear, first encountered Deuterbear.

SecurityWeek

17 hours ago

Third Chrome Zero-Day Patched by Google Within One Week

Google releases Chrome 125 to the stable channel with patches for nine vulnerabilities, including a zero-day.

Cyber Security News

21 hours ago

Google Chrome Zero-day Vulnerability (CVE-2024-4947) Actively Exploited in The Wild

Google has released update for its Chrome to patch a high-severity vulnerability that is being actively exploited by attackers in the wild.

The Hacker News

22 hours ago

Cybercriminals Exploiting Microsoft’s Quick Assist Feature in Ransomware Attacks

Beware of Storm-1811! This financially motivated group is abusing Microsoft's Quick Assist tool in social engineering attacks.

The Hacker News

22 hours ago

Google Patches Yet Another Actively Exploited Chrome Zero-Day Vulnerability

Google fixes critical zero-day vulnerability in Chrome. CVE-2024-4947, a type confusion bug in the V8 JavaScript engine, has been actively exploited b

SC Magazine

Microsoft’s Quick Assist used in scam to drop Black Basta ransomware

Threat actors use the remote management tool and social engineering to access victims’ systems and install malware.

SC Magazine

Google patches 3rd Chrome browser zero-day inside of a week

Security pros say the uptick in Chrome zero-days this week demonstrates an increased focus by threat actors on attacking browsers.

Trend Micro

Tracking the Progression of Earth Hundun's Cyberespionage Campaign in 2024

This report describes how Waterbear and Deuterbear — two of the tools in Earth Hundun's arsenal — operate, based on a campaign from 2024.

Bleeping Computer

Google patches third exploited Chrome zero-day in a week

Google has released a new emergency Chrome security update to address the third zero-day vulnerability exploited in attacks within a week.

Bleeping Computer

Google fixes third actively exploited Chrome zero-day in a week

Google has released a new emergency Chrome security update to address the third zero-day vulnerability exploited in attacks within a week.

Bleeping Computer

Let this bundle help you get Microsoft IT certified for under $60

For a limited time, you can get the complete Microsoft Tech Certification Bundle for $59.97 (reg. $429).

Cyber Security News

5 Common Phishing Vectors and Examples - 2024

Phishing attacks can be executed through various means, such as SMS and phone calls, but the most prevalent method involves sending victims emails containing malicious attachments.

Bleeping Computer

Windows Quick Assist abused in Black Basta ransomware attacks

Financially motivated cybercriminals abuse the Windows Quick Assist feature in social engineering attacks to deploy Black Basta ransomware payloads on victims' networks.

Ars Technica

SSH backdoor has infected 400,000 Linux servers over 15 years and keeps on spreading

Ebury backdoors SSH servers in hosting providers, giving the malware extraordinary reach.

The Cyber Express

The Cybersecurity Guardians: Meet the Top 30 cybersecurity Influencers to Follow in 2024

The ever-evolving landscape of cybersecurity is shaped by a dedicated group of individuals. These pioneers, through their research, entrepreneurship, and

SecurityWeek

Threat Actors Abuse GitHub to Distribute Multiple Information Stealers

Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software.

Cyber Security News

Turla APT Group Attacking European Ministry of Foreign Affairs

The well-known advanced persistent threat (APT) group Turla, which is based in Russia, is said to be going after the European Ministry.

The Hacker News

Turla Group Deploys LunarWeb and LunarMail Backdoors in Diplomatic Missions

Two new backdoors, LunarWeb and LunarMail, have targeted a European ministry of foreign affairs and its diplomatic missions in the Middle East

The Hacker News

It's Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure

Moving to the cloud just got easier. Discover how Zerto simplifies your VMware vSphere to Microsoft Azure migration.

Security Affairs

Adobe fixed multiple critical flaws in Acrobat and Reader

Adobe addressed multiple code execution vulnerabilities in several products, including Adobe Acrobat and Reader.

The Cyber Express

Microsoft Addresses Zero-Day Vulnerability Exploited by QakBot Malware

Microsoft patched a zero-day vulnerability exploited by attackers to distribute QakBot and other malware payloads on susceptible Windows systems. Identified

Infosecurity News

Microsoft Fixes Three Zero-Days in May Patch Tuesday

Microsoft has released patches for three zero-day vulnerabilities including two actively exploited in the wild

Cyber Security News

10 Best Network Security Providers for Healthcare Industry in 2024

Best Network Security Providers for the Healthcare Industry - 1. Perimeter 81, 2. Palo Alto Networks, 3. Fortinet, 4. Cisco, 5. Trend Micro

The Cyber Express

Chrome Vulnerability Alert: Google’s Rapid Response to 6th Zero-Day Exploit

A new Google Chrome vulnerability has been uncovered and exploited, marking the sixth zero-day incident in 2024 alone. In response,

The Hacker News

Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days

Microsoft has patched 61 new security flaws, including two zero-days actively exploited in the wild.

CSO

FBI warns Black Basta ransomware impacted over 500 organizations worldwide

CISA advisory includes indicators of compromise and TTPs that can be used for threat hunting.

SC Magazine

Microsoft fixes exploited Qakbot-delivering 0-day in May Patch Tuesday

In this month’s release, Redmond patched 60 CVEs including two other zero-days and a SharePoint Server remote code execution vulnerability rated critical.

DarkReading

Microsoft Windows DWM Zero-Day Poised for Mass Exploit

CVE-2024-30051 is the most concerning out of this month's Patch Tuesday offerings, and is already under active exploit by several QakBot actors.

Security Affairs

Microsoft Patch Tuesday security updates for May 2024 fixes 2 actively exploited zero-days

Microsoft Patch Tuesday security updates for May 2024 fixed 59 flaws across various products including an actively exploited zero-day.

Bleeping Computer

Microsoft fixes VPN failures caused by April Windows updates

Today, Microsoft fixed a known issue breaking VPN connections across client and server platforms after installing the April 2024 Windows security updates.

Cyber Security News

Alert! Microsoft Fixes 60 Vulnerabilities With 2 Actively Exploited Zero-Days

Microsoft fixed 60 vulnerabilities in its Patch Tuesday release in May 2024, including 2 zero-day vulnerabilities actively exploited in the wild

Bleeping Computer

VMware makes Workstation Pro and Fusion Pro free for personal use

VMWare has made Workstation Pro and Fusion Pro free for personal use, allowing home users and students to set up their own virtualized test labs and play with another operating system at little to no cost.

Bleeping Computer

Microsoft fixes Windows Server bug causing crashes, NTLM auth failures

Microsoft has fixed a known issue causing NTLM authentication failures and domain controller reboots after installing last month's Windows Server security updates.

SecurityWeek

Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities

Microsoft patched 60 security bugs in multiple products and waned of an actively exploited Windows zero-day (CVE-2024-30051)

Bleeping Computer

Microsoft fixes Windows zero-day exploited in QakBot malware attacks

Microsoft has fixed a zero-day vulnerability exploited in attacks to deliver QakBot and other malware payloads on vulnerable Windows systems.

Bleeping Computer

Windows 10 KB5037768 update released with new features and 20 fixes

Microsoft has released the KB5037768 cumulative update for Windows 10 21H2 and Windows 10 22H2 with twenty changes, including account notifications in the Start Menu and Widgets on the lock screen.

Bleeping Computer

Microsoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flaws

Today is Microsoft's May 2024 Patch Tuesday, which includes security updates for 61 flaws and three actively exploited or publicly disclosed zero days.

Bleeping Computer

Windows 11 KB5037771 update released with 30 fixes, changes

Microsoft is rolling out the KB5037771 cumulative update for Windows 11 23H3 with thirty bug fixes and changes, including a fix for a bug breaking VPN connections.

SecurityWeek

Adobe Patches Critical Flaws in Reader, Acrobat

Adobe documents multiple code execution flaws in a wide range of products, including the widely deployed Adobe Acrobat and Reader software.

Infosecurity News

Russian Actors Weaponize Legitimate Services in Multi-Malware Attack

Recorded Future details a novel campaign that abuses legitimate internet services to deploy multiple malware variants for credential theft

Bleeping Computer

VMware fixes three zero-day bugs exploited at Pwn2Own 2024

VMware fixed four security vulnerabilities in the Workstation and Fusion desktop hypervisors, including three zero-days exploited during the Pwn2Own Vancouver 2024 hacking contest.

The Hacker News

New Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active Exploitation

Google has released emergency fixes for a new zero-day vulnerability (CVE-2024-4761) that has been actively exploited in the wild.

SecurityWeek

VMware Patches Vulnerabilities Exploited at Pwn2Own 2024

VMware has patched three critical and high-severity vulnerabilities exploited earlier this year at the Pwn2Own hacking competition.

HACKRead

Kaspersky Reveals Global Rise in APTs, Hacktivism and Targeted Attacks

The Israel-Hamas conflict has fueled a wave of hacktivism activity, with groups like SiegedSec launching attacks and leaking sensitive information.

Bleeping Computer

Get up to date on Microsoft Azure with $77 off this training bundle

Cloud technology is changing how IT departments function, and getting certified in it can help advance your career. These nine Microsoft Azure exam prep courses put you on the path for $39.99, $77 off the $117 MSRP.

Security Affairs

Google fixes sixth actively exploited Chrome zero-day this year

Google released emergency security updates to address an actively exploited Chrome zero-day vulnerability.

The Hacker News

Ongoing Campaign Bombarded Enterprises with Spam Emails and Phone Calls

A new social engineering campaign is targeting enterprises with spam emails to gain initial access. The threat actor overwhelms users' email and calls

Cyber Security News

Chrome Zero-day Vulnerability Exploited in the Wild, Patch Now!

Google has released an urgent security update for the Chrome browser to address a high-severity vulnerability that is being actively exploited in the wild.

Bleeping Computer

Google Chrome emergency update fixes 6th zero-day exploited in 2024

Google has released emergency security updates for the Chrome browser to address a high-severity zero-day vulnerability tagged as exploited in attacks.

Latest Hacking News

Google Admits Active Exploitation For Chrome Browser Zero-Day

Chrome users must ensure that their devices are updated with the latest browser release. Google addressed an actively exploited zero-day flaw with the latest build, which applies to all Chrome users with various devices. The

Krebs on Security

Patch Tuesday, May 2024 Edition

Microsoft today released updates to fix more than 60 security holes in Windows computers and supported software, including two "zero-day" vulnerabilities in Windows that are already being exploited in active attacks. There are also important security patches available for macOS…

SC Magazine

Google patches 6th Chrome zero-day of 2024, three days after last one

Security pros say the industry can expect to see this bug exploited soon, so patch, monitor and conduct other measures, like browser isolation and sandboxing.

SC Magazine

LockBit ransomware spread in millions of emails via Phorpiex botnet

Emails from “Jenny Green” delivered LockBit Black through attached ZIP files.

Bleeping Computer

PyPi package backdoors Macs using the Sliver pen-testing suite

A new package mimicked the popular 'requests' library on the Python Package Index (PyPI) to target macOS devices with the Sliver C2 adversary framework, used for gaining initial access to corporate networks.

DarkReading

500 Victims In, Black Basta Reinvents With Novel Vishing Strategy

Ransomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction.

Bleeping Computer

INC ransomware source code selling on hacking forums for $300,000

A cybercriminal using the name "salfetka" claims to be selling the source code of INC Ransom, a ransomware-as-a-service (RaaS) operation launched in August 2023.

Ars Technica

Black Basta ransomware group is imperiling critical infrastructure, groups warn

Threat group has targeted 500 organizations. One is currently struggling to cope.

Bleeping Computer

Botnet sent millions of emails in LockBit Black ransomware campaign

Since April, millions of phishing emails have been sent through the Phorpiex botnet to conduct a large-scale LockBit Black ransomware campaign.

Cyber Security News

Nmap 7.95 Released - What’s New!

The latest version of Nmap, the renowned network exploration tool and security scanner, 7.95, has been officially released. It brings many performance improvements, new features, and bug fixes.

SecurityWeek

$2.5 Million Offered at Upcoming 'Matrix Cup' Chinese Hacking Contest

Chinese hacking contest Matrix Cup is offering rewards for exploits targeting OS, smartphones, enterprise software, and security products.

Cyber Security News

Apple iTunes For Windows Flaw Let Attackers Execute Malicious Code

A new arbitrary code execution vulnerability has been discovered in iTunes that could allow a threat actor to perform malicious activities

Krebs on Security

4 days ago

How Did Authorities Identify the Alleged Lockbit Boss?

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit's leader "LockBitSupp" claims the feds named the wrong guy,…

The Record

4 days ago

Southeast Asian scam syndicates stealing $64 billion annually, researchers find

In Cambodia, Laos and Myanmar, the groups are estimated to reap about $43.8 billion each year through scams — some 40 percent of the three nations’ combined formal GDP.

Cyber Security News

4 days ago

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.

The Hacker News

5 days ago

FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT

The notorious FIN7 hacking group is at it again! This time, they're using malicious Google ads to trick users into downloading malware disguised as le

CSO

Google Chrome gets a patch for actively exploited zero-day vulnerability

Details of the use-after-free memory vulnerability were not publicly released, but Google says it’s aware an exploit for the bug exists.

Ars Technica

Google patches its fifth zero-day vulnerability of the year in Chrome

Exploit code for critical "use-after-free" bug is circulating in the wild.

The Hacker News

North Korean Hackers Deploy New Golang Malware 'Durian' Against Crypto Firms

North Korean hackers have unleashed a new Golang malware called "Durian" in targeted attacks against South Korean crypto firms.

SecurityWeek

In Other News: European Parliament Breach, DocGo Hack, VMware Advisories Moved

European Parliament application breached, DocGo hacked, VMware advisories moved to Broadcom support portal.

Security Affairs

Google fixes fifth actively exploited Chrome zero-day this year

Since the start of the year, Google released an update to fix the fifth actively exploited zero-day vulnerability in the Chrome browser.

SecurityWeek

Exploited Chrome Zero-Day Patched by Google

A Chrome 124 update patches the second Chrome zero-day that has been found to be exploited in malicious attacks in 2024.

Security Affairs

Russia-linked APT28 targets government Polish institutions

CERT Polska warns of a large-scale malware campaign against Polish government institutions conducted by Russia-linked APT28.

Cyber Security News

New 'TunnelVision' Technique Allows Hackers to Bypass VPN Encryption

Security researchers have uncovered a new technique called "TunnelVision" that exposes a fundamental flaw in routing-based Virtual Private Networks (VPNs),

Cyber Security News

New Malware Attacking Windows & MS Office Users

A sophisticated malware campaign has been identified, specifically targeting Windows and Microsoft Office users through cracked software.

The Hacker News

Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability

Google has just released an update to patch a new zero-day flaw, CVE-2024-4671, which hackers are actively exploiting in the wild.

Bleeping Computer

Google fixes fifth Chrome zero-day exploited in attacks this year

Google has released a security update for the Chrome browser to fix the fifth zero-day vulnerability exploited in the wild since the start of the year.

Cyber Security News

Alert! Google Chrome Zero-day Exploited in the Wild

There is a vulnerability in Chrome's Visuals component that is being tracked as CVE-2024-4671. The flaw is related to the use-after-free issue and can potentially lead to remote code execution.

SC Magazine

Google patches fifth Chrome zero-day of 2024

While Google confirmed that the bug exists in the wild, security researchers say there has yet to have been an instance of active exploitation.

Bleeping Computer

Citrix warns admins to manually mitigate PuTTY SSH client bug

Citrix notified customers this week to manually mitigate a PuTTY SSH client vulnerability that could allow attackers to steal a XenCenter admin's private SSH key.

Bleeping Computer

Add Microsoft Office to your Windows or Mac laptop for $200 off

Get Microsoft Office Professional Plus 2019 for Windows and Microsoft Office Home & Business 2019 for Mac for $29.97, $200 off the $229 MSRP, through the end of May 12th, 2024.

The Hacker News

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation

Researchers have uncovered a vulnerability (CVE-2024-3661) that allows threat actors to snoop on your VPN traffic.

The Hacker News

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

Russia-Linked APT28 Strikes Poland with Malware Campaign Polish government bodies were hit by a sophisticated malware attack orchestrated by the infam

Bleeping Computer