Security – Page 102 – Computer Security Articles

Iranian spies posing as technical support agents contacted targeted individuals in Israel, Palestine, Iran, the UK, and the US on WhatsApp

MalwareBytes Security

September 12, 2024 admin

Fake Canva home page leads to browser lock

A Google search ad for Canva is highly misleading and walks users into a trap.

Security TrendMicro

September 12, 2024 admin

Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities

Credit to Author: Hitomi Kimura| Date: Thu, 12 Sep 2024 00:00:00 +0000

In this blog entry, we provide an analysis of the recent remote code execution attacks related to Progress Software’s WhatsUp Gold that possibly abused the vulnerabilities CVE-2024-6670 and CVE-2024-6671.

MalwareBytes Security

September 12, 2024 admin

Telegram CEO Pavel Durov charged with allowing criminal activity

Telegram CEO Pavel Durov has been arrested in France which raises a lot of questions about the reasons behind the arrest.

Security TrendMicro

September 12, 2024 admin

Earth Preta Evolves its Attacks with New Malware and Strategies

Credit to Author: Lenart Bermejo| Date: Mon, 09 Sep 2024 00:00:00 +0000

In this blog entry, we discuss our analysis of Earth Preta’s enhancements in their attacks by introducing new tools, malware variants and strategies to their worm-based attacks and their time-sensitive spear-phishing campaign.

MalwareBytes Security

September 12, 2024 admin

CODAC Behavioral Healthcare, US Marshalls are latest ransomware targets

Ransomware gangs love sensitive data from healthcare and support organizations to increase their leverage on the victims

Security TrendMicro

September 12, 2024 admin

TIDRONE Targets Military and Satellite Industries in Taiwan

Credit to Author: Pierre Lee| Date: Fri, 06 Sep 2024 00:00:00 +0000

Our research reveals that an unidentified threat cluster we named TIDRONE have shown significant interest in military-related industry chains, particularly in the manufacturers of drones.

Microsoft Security

September 12, 2024 admin

North Korean threat actor Citrine Sleet exploiting Chromium zero-day

Credit to Author: Microsoft Threat Intelligence and Microsoft Security Response Center (MSRC)| Date: Fri, 30 Aug 2024 16:00:00 +0000

Microsoft identified a North Korean threat actor exploiting a zero-day vulnerability in Chromium (CVE-2024-7971) to gain remote code execution (RCE) in the Chromium renderer process. Our assessment of ongoing analysis and observed infrastructure attributes this activity to Citrine Sleet, a North Korean threat actor that commonly targets the cryptocurrency sector for financial gain.

The post North Korean threat actor Citrine Sleet exploiting Chromium zero-day appeared first on Microsoft Security Blog.