RSS Reader for Computer Security Articles
Credit to Author: Ted Lee| Date: Fri, 07 Feb 2025 00:00:00 +0000
This blog post details our analysis of an SEO manipulation campaign targeting Asia. We also share recommendations that can help enterprises proactively secure their environment.
Read MoreCredit to Author: Peter Girnus| Date: Tue, 04 Feb 2025 00:00:00 +0000
The ZDI team offers an analysis on how CVE-2025-0411, a zero-day vulnerability in 7-Zip, was actively exploited to target Ukrainian organizations in a SmokeLoader campaign involving homoglyph attacks.
Read MoreCredit to Author: Buddy Tancio| Date: Thu, 30 Jan 2025 00:00:00 +0000
The Managed XDR team investigated a sophisticated campaign distributing Lumma Stealer through GitHub, where attackers leveraged the platform’s release infrastructure to deliver malware such as SectopRAT, Vidar, and Cobeacon.
Read MoreCredit to Author: Stephen Carbery| Date: Tue, 14 Jan 2025 00:00:00 +0000
This blog discusses a web shell intrusion incident where attackers abused the IIS worker to exfiltrate stolen data.
Read MoreCredit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000
Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.
Read MoreCredit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000
Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.
Read MoreCredit to Author: Trend Micro Research| Date: Fri, 17 Jan 2025 00:00:00 +0000
Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.
Read MoreCredit to Author: Stephen Carbery| Date: Tue, 14 Jan 2025 00:00:00 +0000
This blog discusses a web shell intrusion incident where attackers abused the IIS worker to exfiltrate stolen data.
Read More