Hackers are now hiding malware in Windows Event Logs
Security researchers have noticed a malicious campaign that used Windows event logs to store malware, a technique that has not…
Russian hackers compromise embassy emails to target governments
Security analysts have uncovered a recent phishing campaign from Russian hackers known as APT29 (Cozy Bear or Nobelium) targeting diplomats and…
The Week in Ransomware – April 29th 2022 – New operations emerge
This week we have discovered numerous new ransomware operations that have begun operating, with one appearing to be a rebrand of…
Bumblebee Malware Buzzes Into Cyberattack Fray
The sophisticated Bumblebee downloader is being used in ongoing email-borne attacks that could lead to ransomware infections.
New Bumblebee malware replaces Conti’s BazarLoader in cyberattacks
A newly discovered malware loader called Bumblebee is likely the latest development of the Conti syndicate, designed to replace the…
Hackers exploit critical VMware RCE flaw to install backdoors
Advanced hackers are actively exploiting a critical remote code execution (RCE) vulnerability, CVE-2022-22954, that affects in VMware Workspace ONE Access (formerly…
Quantum ransomware seen deployed in rapid network attacks
The Quantum ransomware, a strain first discovered in August 2021, were seen carrying out speedy attacks that escalate quickly, leaving…
Microsoft Exchange servers hacked to deploy Hive ransomware
A Hive ransomware affiliate has been targeting Microsoft Exchange servers vulnerable to ProxyShell security issues to deploy various backdoors, including Cobalt Strike…
More Than Half of Initial Infections in Cyberattacks Come Via Exploits, Supply Chain Compromises
Mandiant data also shows a dramatic drop in attacker dwell time on victim networks in the Asia-Pacific region — to…
Emotet botnet switches to 64-bit modules, increases activity
The Emotet malware is having a burst in distribution and is likely to soon switch to new payloads that are…