Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control
The CISA is releasing this CSA to warn organizations that malicious cyber actors, likely APT actors, are exploiting VMware vulnerabilities CVE-2022-22954 and CVE-2022-22960 separately. These vulnerabilities affect certain VMware versions [...]
Analysis of the Massive NDSW/NDSX Malware Campaign
The "Parrot TDS" campaign involving more than 16,500 infected websites. such massive infections don't go unnoticed by Sucuri and immediately recognized that the infection in their writeup belonged to the [...]
-
Microsoft Security: Exposing POLONIUM activity and infrastructure targeting Israeli organizations GalleryMicrosoft Security: Exposing POLONIUM activity and infrastructure targeting Israeli organizations
Internet Security, Microsoft, POLONIUM activity, Security Advisory, Security Update, Targeted Attacks
Microsoft Security: Exposing POLONIUM activity and infrastructure targeting Israeli organizations
Microsoft successfully detected and disabled attack activity abusing OneDrive by a previously undocumented Lebanon-based activity group Microsoft Threat Intelligence Center (MSTIC) tracks as POLONIUM . The associated indicators and tactics [...]
Conti ransomware targeted Intel firmware for stealthy attacks
Researchers analyzing the leaked chats of the notorious Conti ransomware operation have discovered that teams inside the Russian cybercrime group were actively developing firmware hacks. The ME is an embedded [...]
VMware and F5 BIG-IP flaws are being exploited by EnemyBot
EnemyBot, a botnet derived from many pieces of malware codes, extends its overall reach by rapidly incorporating exploits for previously detected severe vulnerabilities in web servers, content management systems, IoT, [...]
Get Social