Exploits – Page 2 – Computer Security Articles

Azure AutoWarp brings automation headaches

March 9, 2022 admin automation, autowarp, Azure, cloud, Exploits, microsoft, Server

Credit to Author: Christopher Boyd| Date: Wed, 09 Mar 2022 10:19:48 +0000

An automation issue with Azure services could lead to compromised managed identity tokens.

The post Azure AutoWarp brings automation headaches appeared first on Malwarebytes Labs.

APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT

March 17, 2020 admin APT, apt36, coronavirus, coronavirus malware, covid-19, credential stealer, crimson rat, exploit, Exploits, info-stealer, macro, malicious macro, malware, nation-state attack, Rat, remote administration tool, Social engineering, spear phishing, spear phishing attack, Threat analysis, transparent tribe

Credit to Author: Threat Intelligence Team| Date: Mon, 16 Mar 2020 15:00:00 +0000

We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data.

Categories:

Threat analysis

Tags: APT APT36 coronavirus coronavirus malware covid-19 credential stealer crimson rat exploit exploits info-stealer macro malicious macro malware nation-state attack rat remote administration tool Social Engineering spear phishing spear phishing attack transparent tribe

Security Sophos

January 2020 Patch Tuesday delivers fixes for 50 bugs

January 14, 2020 admin chromium, Edge, elevation of privilege, Exploits, microsoft, Patch Tuesday, RDP, SophosLabs Uncut, Updates, Vulnerability, windows

Credit to Author: SophosLabs Offensive Security| Date: Tue, 14 Jan 2020 18:15:18 +0000

This month’s big security news from Microsoft is the end of support for Windows 7, and a patch of a cryptographic library<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/wiyw9sHJyLE” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

A decade in cybersecurity fails: the top breaches, threats, and ‘whoopsies’ of the 2010s

December 19, 2019 admin ashley madison, Ashley Madison hack, awareness, badrabbit, cambridge analytica, cryptolocker, cryptolocker ransomware, Data Privacy, Edward Snowden, emotet, Exploits, Facebook, Hacktivism, Mat Honan, NotPetya, NSA, nsa spying, nsa surveillance, NSA tools, playstation breach, playstation hack, ransomware, ryuk, Ryuk Ransomware, security fails, Shadow Brokers, social media, Sony, sony pictures hack, SURVEILLANCE, target breach, target hack, trickbot, triple threat, WannaCry

Credit to Author: Malwarebytes Labs| Date: Thu, 19 Dec 2019 18:03:33 +0000

As the 2010s come to a close, we take a snarky walk down memory lane, listing the craziest, most impactful, or simply just awful cybersecurity fails of the decade.

Categories:

Awareness

Tags: ashley madison ashley madison hack BadRabbit cambridge analytica cryptolocker cryptolocker ransomware Data privacy Edward Snowden emotet exploits facebook hacktivism mat honan NotPetya NSA nsa spying nsa surveillance NSA tools playstation breach playstation hack ransomware ryuk Ryuk ransomware security fails shadow brokers social media sony sony pictures hack surveillance target breach target hack trickbot triple threat WannaCry

Kaspersky Security

Chrome in the zero-day crosshairs

November 4, 2019 admin Browsers, Business, chrome, CVE, enterprise, Exploits, google, news, Targeted Attacks, Threats, vulnerabilities, wizardopium

Credit to Author: Kaspersky Team| Date: Mon, 04 Nov 2019 16:23:32 +0000

A Chrome vulnerability already exploited by attackers gets patched. We recommend updating your browser right now.

MalwareBytes Security

Pulse VPN patched their vulnerability, but businesses are trailing behind

October 18, 2019 admin Business, cybercriminals, exploit, exploit kits, Exploits, patch, patching, Pulse, VPN, vulnerabilities, Vulnerability

Credit to Author: Pieter Arntz| Date: Fri, 18 Oct 2019 16:36:36 +0000

After a vulnerability in a popular business VPN solutions was discussed at length and an easy to use exploit is availbale, organizations still fail to apply the patch. What’s up?

Categories:

Business

Tags: cybercriminals exploit exploit kits exploits patch patching pulse vpn vulnerabilities vulnerability

Security Sophos

Microsoft fixes drop in number for October, 2019 updates

October 9, 2019 admin adobe, Chakra, ChakraCore, Edge, elevation of privilege, Exploits, microsoft, Patch Tuesday, SophosLabs Uncut, Updates, VBScript, Vulnerability, windows

Credit to Author: SophosLabs Offensive Security| Date: Wed, 09 Oct 2019 20:00:31 +0000

A relatively low number of vulnerabilities were addressed in this month’s Windows update rollups<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/kC7qjGbuUh8″ height=”1″ width=”1″ alt=””/>

MalwareBytes Security

New iOS exploit checkm8 allows permanent compromise of iPhones

September 27, 2019 admin apple, apple security, apple vulnerability, checkm8, exploit, Exploits, iOS, ios exploit, Mac, Vulnerability

Credit to Author: Thomas Reed| Date: Fri, 27 Sep 2019 16:48:42 +0000

A new exploit for iOS enables attackers to gain permanent access to iPhones, iPads, Apple Watches, and more—with zero potential for patching. Learn why this is possibly the biggest security news for iOS since its inception.

Categories:

Tags: Apple apple security apple vulnerability checkm8 exploit exploits iOS iOS exploit vulnerability