Malicious actors are deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed “Owowa,” on Microsoft Exchange Outlook Web Access servers with the goal of stealing credentials and enabling remote command execution. …
Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials Read More »
At least 300,000 IP addresses associated with MikroTik devices have been found vulnerable to multiple remotely exploitable security vulnerabilities that have since been patched by the popular supplier of routers and wireless ISP devices. The …
Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs Read More »
Network security vendor SonicWall is urging customers to update their SMA 100 series appliances to the latest version following the discovery of multiple security vulnerabilities that could be abused by a remote attacker to take …
SonicWall Urges Customers to Immediately Patch Critical SMA 100 Flaws Read More »
Nobelium, the threat actor attributed to the massive SolarWinds supply chain compromise, has been once again linked to a series of attacks targeting multiple cloud solution providers, services, and reseller companies, as the hacking group …
SolarWinds Hackers Targeting Government and Business Entities Worldwide Read More »
Enterprise software provider Zoho on Friday warned that a newly patched critical flaw in its Desktop Central and Desktop Central MSP is being actively exploited by malicious actors, marking the third security vulnerability in its …
Warning: Yet Another Zoho ManageEngine Product Found Under Active Attacks Read More »
A Pakistani threat actor successfully socially engineered a number of ministries in Afghanistan and a shared government computer in India to steal sensitive Google, Twitter, and Facebook credentials from its targets and stealthily obtain access …
Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments Read More »
North Korean defectors, journalists who cover North Korea-related news, and entities in South Korea are being zeroed in on by a nation-state-sponsored advanced persistent threat (APT) as part of a new wave of highly-targeted surveillance …
New Chinotto Spyware Targets North Korean Defectors, Human Rights Activists Read More »
A joint four-month operation coordinated by Interpol, the international criminal police organization, has culminated in the arrests of more than 1,000 cybercriminals and the recovery of $27 million in illicit proceeds. Codenamed “HAECHI-II,” the crackdown …
Interpol Arrests Over 1,000 Cyber Criminals From 20 Countries; Seizes $27 Million Read More »
Italy’s antitrust regulator has fined both Apple and Google €10 million each for what it calls are “aggressive” data practices and for not providing consumers with clear information on commercial uses of their personal data …
Italy’s Antitrust Regulator Fines Google and Apple for “Aggressive” Data Practices Read More »
A threat actor known for striking targets in the Middle East has evolved its Android spyware yet again with enhanced capabilities that allow it to be stealthier and more persistent while passing off as seemingly …
APT C-23 Hackers Using New Android Spyware Variant to Target Middle East Users Read More »
Weaknesses in e-commerce portals are being exploited to deploy a Linux backdoor as well as a credit card skimmer that’s capable of stealing payment information from compromised websites. The attacker started with automated e-commerce attack …
New Golang-based Linux Malware Targeting eCommerce Websites Read More »
A threat actor with ties to North Korea has been linked to a prolific wave of credential theft campaigns targeting research, education, government, media and other organizations, with two of the attacks also attempting to …
North Korean Hackers Found Behind a Range of Credential Theft Campaigns Read More »