Chinese hackers abuse VLC Media Player to launch malware loader
Security researchers have uncovered a long-running malicious campaign from hackers associated with the Chinese government who are using VLC Media…
Windows 11 KB5011563 update fixes SMB, DirectX blue screens
Microsoft has released the optional KB5011563 cumulative update preview for Windows 11, with fixes for stop errors triggering blue screens…
New Mustang Panda hacking campaign targets diplomats, ISPs
An ongoing Mustang Panda campaign that has started at least eight months ago has been uncovered by threat analysts who…
Windows zero-day flaw giving admin rights gets unofficial patch, again
A Windows local privilege escalation zero-day vulnerability that Microsoft has failed to fully address for several months now, allows users…
Western Digital app bug gives elevated privileges in Windows, macOS
Western Digital's EdgeRover desktop app for both Windows and Mac are vulnerable to local privilege escalation and sandboxing escape bugs that…
Google exposes tactics of a Conti ransomware access broker
Google's Threat Analysis Group has exposed the operations of a threat actor group dubbed "EXOTIC LILY," an initial access broker…
Vulnerable Microsoft SQL Servers targeted with Cobalt Strike
Threat analysts have observed a new wave of attacks installing Cobalt Strike beacons on vulnerable Microsoft SQL Servers, leading to…
Microsoft starts killing off WMIC in Windows, will thwart attacks
Microsoft is moving forward with removing the Windows Management Instrumentation Command-line (WMIC) tool, wmic.exe, starting with the latest Windows 11…
Qbot, Lokibot malware switch back to Windows Regsvr32 delivery
Malware distributors have turned to an older trick known as Squiblydoo to spread Qbot and Lokibot via Microsoft Office document using regsvr32.exe.…
Fake Windows 11 upgrade installers infect you with RedLine malware
Threat actors have started distributing fake Windows 11 upgrade installers to users of Windows 10, tricking them into downloading and…