Log4j attackers switch to injecting Monero miners via RMI
Some threat actors exploiting the Apache Log4j vulnerability have switched from LDAP callback URLs to RMI or even used both…
Emotet starts dropping Cobalt Strike again for faster attacks
Right in time for the holidays, the notorious Emotet malware is once again directly installing Cobalt Strike beacons for rapid…
Google pushes emergency Chrome update to fix zero-day used in attacks
Google has released Chrome 96.0.4664.110 for Windows, Mac, and Linux, to address a high-severity zero-day vulnerability exploited in the wild. [...]
TinyNuke info-stealing malware is again attacking French users
The info-stealing malware TinyNuke has re-emerged in a new campaign targeting French users with invoice-themed lures in emails sent to corporate…
XE Group exposed for eight years of hacking, credit card theft
A relatively unknown group of Vietnamese hackers calling themselves 'XE Group' has been linked to eight years of for-profit hacking…
TrickBot phishing checks screen resolution to evade researchers
The TrickBot malware operators have been using a new method to check the screen resolution of a victim system to…
Stealthy new JavaScript malware infects Windows PCs with RATs
A new stealthy JavaScript malware loader named RATDispenser is being used to infect devices with a variety of remote access trojans…
GoDaddy data breach hits WordPress hosting services resellers
GoDaddy says the recently disclosed data breach affecting roughly 1.2 million customers has also hit multiple Managed WordPress services resellers.…
Microsoft Edge adds Super Duper Secure Mode to Stable channel
Microsoft has quietly added a 'Super Duper Secure Mode' to the Microsoft Edge web browser, a new feature that brings security improvements without significant…
Six million Sky routers exposed to takeover attacks for 17 months
Around six million Sky Broadband customer routers in the UK were affected by a critical vulnerability that took over 17…