New attacks use Windows security bypass zero-day to drop malware
New phishing attacks use a Windows zero-day vulnerability to drop the Qbot malware without displaying Mark of the Web security…
Chinese hackers use Google Drive to drop malware on govt networks
State-backed Chinese hackers launched a spearphishing campaign to deliver custom malware stored in Google Drive to government, research, and academic…
QBot phishing abuses Windows Control Panel EXE to infect devices
Phishing emails distributing the QBot malware are using a DLL hijacking flaw in the Windows 10 Control Panel to infect…
Top Legacy Active Directory Infrastructure Vulnerabilities and How Attackers See Them
By Tammy Mindel, Security Product Manager at Semperis Microsoft Active Directory (AD) has become a highly lucrative target […] The…
Phishing drops IceXLoader malware on thousands of home, corporate devices
A ongoing phishing campaign has infected thousands of home and corporate users with a new version of the 'IceXLoader' malware.…
New hacking group uses custom ‘Symatic’ Cobalt Strike loaders
A previously unknown Chinese APT (advanced persistent threat) hacking group dubbed 'Earth Longzhi' targets organizations in East Asia, Southeast Asia,…
RomCom RAT malware campaign impersonates KeePass, SolarWinds NPM, Veeam
The threat actor behind the RomCom RAT (remote access trojan) has refreshed its attack vector and is now abusing well-known…
Emotet botnet starts blasting malware again after 5 month break
The Emotet malware operation is again spamming malicious emails after almost a five-month "vacation" that saw little activity from the notorious…
Using Regex to Implement Passphrases in Your Active Directory
Passphrases provide a superior type of password for authentication as they allow you to create strong passwords you can remember.…
Google ad for GIMP.org served info-stealing malware via lookalike site
Searching for 'GIMP' on Google as recently as last week would show visitors an ad for 'GIMP.org,' the official website of the well known…