13 Jan 2021

Microsoft Defender Zero-Day Fixed in First Patch Tuesday of 2021

83 vulnerabilities have been patched on Microsoft’s first Patch Tuesday of 2021. The patches addressed 10 major flaws, including a zero-day remote code execution bug in Microsoft Defender. 73 of the fixes are classified important and one is publicly known. The fixes addressed Microsoft Windows, the Edge search browser, ChakraCore,

Read More
08 Jan 2021

Emotet Tops Malware Charts in December After Reboot

The Emotet Trojan, after undergoing a makeover, is back at the top of malware charts, according to Check Point’s Global Threat Index for December 2020. Emotet was re-designed to boast more evasive strategies that prevent detection. The malware was in fifth place in the Global Threat Index in November but

Read More
08 Jan 2021

Babuk Locker Targets Large Corporations in the New Year

A new ransomware strain has been discovered and named Babuk Locker, just days into the New Year. According to new research by Chuong Dong of Georgia Tech, the ransomware has successfully compromised five companies since its discovery. Dong claims that he first saw the ransomware mentioned in a tweet, and

Read More
08 Jan 2021

Post-Riot, the Capitol Hill IT Staff Faces a Security Mess

After the destructive riots that wreaked havoc on the United States Capitol building on Wednesday, the next issue at hand is mitigating the risks of having demonstrators access government systems. The congressional support staff is dealing with logistics such as cleanup, repairs, and securing the offices and digital systems after

Read More
28 Dec 2020

Lazarus Group Hits COVID-19 Vaccine-Maker in Espionage Attack

The APT Lazarus Group and other threat actors have allegedly been actively trying to steal COVID-19 research, likely to speed up their own countries’ vaccine development efforts. Lazarus is likely seeking to steal intellectual property to report back to North Korea, according to Kaspersky researchers. Lazarus recently attacked both a

Read More
18 Dec 2020

Microsoft says it found malicious software in its systems

Yesterday, Microsoft announced that it had also been targeted by the SolarWinds espionage campaign after uncovering malware within its systems. The tech giant uses the networking management software Orion found to be the source of the attack impacting a half dozen federal agencies so far. Microsoft’s own products may have

Read More
18 Dec 2020

3M Users Targeted by Malicious Facebook, Insta Browser Add-Ons

Avast Threat Intelligence has identified malware hidden in twenty-eight popular Google Chrome and Microsoft Edge extensions. The extensions are all used for social media sites such as Facebook, Instagram, and Vimeo. Security researchers advise users to uninstall the extensions, which boast 3 million downloads in total. The most popular extensions

Read More
17 Dec 2020

This ‘off the shelf’ Tor backdoor malware is now a firm favorite with ransomware operators

On Thursday, Sophos Labs’ Sivagnanm Gn and Sean Gallagher, two cybersecurity researchers, revealed detailed information on malware that has become increasingly popular over the past several months, called SystemBC. SystemBC is a remote access trojan (RAT) that is advertised across dark web forums and has the capability to abuse Tor

Read More
11 Dec 2020

New Backdoors Used by Hamas-Linked Hackers Abuse Facebook, Dropbox

The threat actor group referred to as Extreme Jackal, Gaza Hackers Team, Gaza Cybergang, and Moonlight has been active since 2012 and mainly focused on conducting cyberattacks against targets in the Middle East. The group has allegedly been using two malware families, Spark and Pierogi alongside two new backdoors named

Read More
18 Nov 2020

Americold Operations Downed by Cyber-Attack

Americold, a US-based cold storage firm, has taken its networks offline following an alleged ransomware attack that affected business operations. Americold offers temperature-controlled warehouses and transportation for heat-sensitive items such as vaccines. The security incident occurred on Monday, due to a regulatory filing with the Securities and Exchange Commission. The

Read More