Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage

Credit to Author: Nikki Madayag| Date: Tue, 21 Sep 2021 00:00:00 GMT

Recently, we discovered that the cryptomining trojan z0Miner has been taking advantage of the Atlassian’s Confluence remote code execution (RCE) vulnerability assigned as CVE-2021-26084, which was disclosed by Atlassian in August.

Read more

Water Basilisk Uses New HCrypt Variant to Flood Victims with RAT Payloads

Credit to Author: Aliakbar Zahravi| Date: Mon, 20 Sep 2021 00:00:00 GMT

In this blog entry we look into a fileless campaign that used a new HCrypt variant to distribute numerous remote access trojans (RATs) in victim systems. This new variant also uses an updated obfuscation mechanism which we detail.

Read more

This Week in Security News – September 17, 2021

Credit to Author: Jon Clay| Date: Fri, 17 Sep 2021 00:00:00 GMT

2021 Midyear Cybersecurity Report and Apple emergency patches fix zero-click iMessage bug used to inject NSO spyware

Read more

Midyear 2021 Cybersecurity Landscape Review: Attacks From All Angles Abound

Here is a rundown of data related to the crucial security issues that enterprises faced during this period, as examined in our report, “Attacks From All Angles: 2021 Midyear Cybersecurity Report.”

Read more

Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus

Credit to Author: Mickey Jin| Date: Wed, 15 Sep 2021 00:00:00 GMT

Citizen Lab has released a report on a new iPhone threat dubbed ForcedEntry. This zero-click exploit seems to be able to circumvent Apple’s BlastDoor security, and allow attackers access to a device without user interaction.

Read more

1H’2021 Security Review Shows Active Cloud Attacks

Credit to Author: Jon Clay| Date: Tue, 14 Sep 2021 00:00:00 GMT

Trend Micro’s midyear report highlights the growing importance of cloud security as attacks increase in frequency and complexity.

Read more

APT-C-36 Updates Its Spam Campaign Against South American Entities With Commodity RATs

Credit to Author: Jaromir Horejsi| Date: Mon, 13 Sep 2021 00:00:00 GMT

We have continued tracking APT-C-36, also known as Blind Eagle, since our research on this threat actor in 2019. We share new findings of APT-C-36’s ongoing spam campaign targeting South American entities.

Read more