Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks
Microsoft has released a new report about the Storm-1175 group and its connection to Medusa ransomware
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Microsoft has released a new report about the Storm-1175 group and its connection to Medusa ransomware
Researchers at Check Point link ‘Amarath-Dragon’ attacks to prolific Chinese cyber-espionage operation
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
Misconfigurations abused to make phishing emails look like they come from within the organization
A new UNC6384 campaign highlights the threat actor’s growing sophistication and geographic expansion
Silver Fox APT abuses Microsoft-signed drivers to kill antivirus and deploy ValleyRAT remote-access backdoor
Forescout also observed a big rise in CVEs added to CISA’s KEV catalog, some of which impacted end-of-life products
Marbled Dust has been exploiting a vulnerability in user accounts associated with the Kurdish military operating in Iraq for over a year, according to Microsoft
NVISO discovered new variants of the BRICKSTORM backdoor, initially designed for Linux, on Windows systems
A security researcher has observed threat actors exploiting vulnerabilities in a driver used by CheckPoint’s ZoneAlarm antivirus to bypass Windows security measures
Phishing attack exploits social engineering techniques alongside Microsoft Teams and remote access software to deploy BackConnect malware
Trend Micro detailed how attackers are using a fake proof-of-concept for a critical Microsoft vulnerability, designed to steal sensitive data from security researchers
A new PayPal phishing scam used genuine money requests, bypassing security checks to deceive recipients
Sophos found observed a significant rise in Microsoft LOLbins abused by attackers in H1 2024 compared to 2023
Microsoft has found that Russian APT Secret Blizzard piggybacks on other cybercriminals' infr4asytructure to conduct cyber espionage
The new Remcos RAT variant identified in a new phishing campaign exploits CVE-2017-0199 via malicious Excel files
Uptycs researchers said the technique exploits Microsoft files to execute malicious commands
Numen Cyber said exploiting the vulnerability does not require novel techniques
The findings come from security researchers at Cisco Talos
The flaw is triggered using the Race Condition between temporary file creation and deletion