04 Oct 2022

Lazarus Group Exploits Dell Driver Vulnerability to Bypass Windows Security

North Korean threat actor Lazarus Group has been observed by security researchers deploying a Windows rootkit. The rootkit has been deployed by exploiting a Dell firmware driver, the researchers say. ESET was the first to detect this addition to the group’s constantly evolving techniques. According to ESET the campaign was

Read More
03 Oct 2022

Hackers Hide Malware in Windows Logo, Target Middle East Governments

A new hacking group that has been dubbed Witchetty has been observed by threat actors using a new steganographic technique to hide a backdoor within a fraudulent Windows logo. The group is reportedly targeting Middle Eastern governments. Broadcom released an advisory addressing the campaign in which it claimed that the

Read More
21 Jun 2022

Microsoft Addresses Wi-Fi Hotspots Issues in Latest Update

Microsoft has addressed a known issue that is currently affecting Wi-Fi hotspot features in its systems. The vulnerability has been added to its official Health Dashboard page as of this week after the company discovered that Windows 10 and 11 machines are subject to the bug. It is likely that

Read More
01 Jun 2022

You Need to Update iOS, Chrome, Windows, and Zoom ASAP

Security researchers at WIRED have urged users to update iOS, Chrome, Windows, and Zoom as soon as possible to stay up to date with relevant security issues. According to Wired, Google has had a busy month releasing patches for the Chrome browser and the Android operating system. In addition, Zoom

Read More
16 May 2022

This phishing attack delivers three forms of malware. And they all want to steal your data

Cybersecurity researchers at Fortinet have released information regarding a phishing campaign targeting Microsoft Windows users. The phishing campaign leverages three different forms of malware, all of which are designed to steal sensitive information and credentials from victims. The malware types used in the campaign are AveMariaRAT, BitRAT, and PandoraHVNC, a

Read More
10 May 2022

Kaspersky uncovers fileless malware inside Windows event logs

Kaspersky has made an unprecedented discovery that could have serious consequences for Windows operating systems and its users. Kaspersky released information about its findings on May 4, detailing how hackers were able to place shellcode into Windows event logs for the first time ever. This means that threat actors were

Read More
22 Apr 2022

LemonDuck botnet plunders Docker cloud instances in cryptocurrency crime wave

According to Microsoft’s security team, the operators of LemonDuck botnet are targeting systems in a mining campaign. Security researchers state that the malware exploits older vulnerabilities, most of which have already had patches released, to infiltrate cloud systems and servers. This includes EternalBlue, BlueKeep, and Microsoft Exchange ProxyLogon bugs. The

Read More
09 Feb 2022

This malware is reading your email just 30 minutes after infecting your PC

An old malware called Qbot is still targeting Windows PCs and other devices with new nefarious efficiency. Although the malware first emerged in 2007, it remains a threat to Windows users. In October, cybersecurity research company DFIR was able to obtain a sample of the malware and conduct analysis on

Read More
13 Jan 2022

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft

Earlier this week, Microsoft issued a fix for a vulnerability that allows remote, unprivileged attackers to abuse Remote Desktop Protocol (RDP) from inside Windows devices. The flaw could allow attackers to hijack smart cards and gain unauthorized access to file systems. The bug, which is tracked as CVE-2022-21893, could lead

Read More
12 Jan 2022

This new malware wants to create backdoors and targets Windows, Linux and macOS

Cybersecurity researchers have discovered a new malware that has the capability to create backdoors on Windows, Linux, and macOS operating systems. Therefore, hackers using the malware could achieve full access to compromised systems on a range of devices. Intezer released more information about the malware, which it has named SysJoker.

Read More