MacOS Zero-Day Used in Watering-Hole Attacks
Attackers targeted Chinese pro-democracy groups using a vulnerability fixed in September along with a second vulnerability fixed early in the…
FBI Attributes Abuse of Its Email Account to Software ‘Misconfiguration’
A wave of phony emails from an FBI mail server originated from an issue with the agency's Law Enforcement Enterprise…
Alibaba ECS instances actively hijacked by cryptomining malware
Threat actors are hijacking Alibaba Elastic Computing Service (ECS) instances to install cryptominer malware and harness the available server resources…
7 million Robinhood user email addresses for sale on hacker forum
The data for approximately 7 million Robinhood customers stolen in a recent data breach are being sold on a popular…
Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server
Threat actors hacked email servers of the FBI to distribute spam email impersonating FBI warnings of fake cyberattacks. […] The…
New Microsoft emergency updates fix Windows Server auth issues
Microsoft has released out-of-band updates to address authentication failures related to Kerberos delegation scenarios impacting Domain Controllers (DC) running supported versions of…
Hoax Email Blast Abused Poor Coding in FBI Website
The Federal Bureau of Investigation (FBI) confirmed today that its fbi.gov domain name and Internet address were used to blast…
The Week in Ransomware – November 12th 2021 – Targeting REvil
This week, law enforcement struck a massive blow against the REvil ransomware operation, with multiple arrests announced and the seizure…
Microsoft warns of surge in HTML smuggling phishing attacks
Microsoft has seen a surge in malware campaigns using HTML smuggling to distribute banking malware and remote access trojans (RAT).…
Zero-day bug in all Windows versions gets free unofficial patch
A free and unofficial patch is now available for a zero-day local privilege escalation vulnerability in the Windows User Profile…