Cybersecurity Attacks Archives - Page 5 of 40

Cyberattacks on WordPress plugin Modern WPBakery Page Builder Addons

Cybersecurity Attacks, Vulnerabilities & Exploits / By Frank Crast / July 17, 2022 / AJAX, CVE-2021-24284, Kaswara, PHP, Wordfence, WPBakery

Researchers from Wordfence have spotted scans against 1.6 million WordPress sites looking for vulnerable Kaswara Modern WPBakery Page Builder Addons plugin.

H0lyGh0st ransomware actors target small and midsize businesses

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / July 17, 2022 / Andariel, BLTC.exe, BTLC_C.exe, C2, Cybersecurity Threat Center, DarkSeoul, DEV-0530, H0lyGh0st, HolyGhost, HolyLock.exe, HolyRS.exe, Microsoft, MSTIC, North Korea, Plutonium, Ransomware, SiennaBlue, SiennaPurple, Small Business, SMB

Security researchers from Microsoft warn threat actors from North Korea are using H0lyGh0st ransomware to target small and midsize businesses around the globe.

ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks

Cybersecurity Attacks, Malware, Network Security / By Frank Crast / July 8, 2022 / ASUS, Black Lotus Labs, Cisco, CVE-2020-26878, CVE-2020-26879, Cybersecurity Attack, Cybersecurity Threat Center, DrayTek, Lumen, NETGEAR, Python, Small Office, SOHO, ZuoRAT

Threat actors are using a multi-stage malware dubbed ZuoRAT to exploit small office/home office (SOHO) routers and launch sophisticated attacks against North American and European networks.

Maui ransomware targets entities in the Healthcare and Public Health sector

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 / CISA, Cybersecurity Threat Center, FBI, Health, healthcare, HPH, Maui, Public Health, Treasury

Cybersecurity experts warn North Korean State-Sponsored threat actors are using Maui ransomware to target entities in the Healthcare and Public Health (HPH) sector.

MedusaLocker ransomware threat

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 / MedusaLocker, Ransomware

Threat actors are exploiting primarily Remote Desktop Protocol (RDP) vulnerabilities on victim computers to deploy MedusaLocker ransomware.

CISA adds 8 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include PwnKit)

Cybersecurity Attacks, Vulnerabilities & Exploits / By Frank Crast / June 30, 2022 / Chromium, CISA, CVE-2018-4344, CVE-2019-8605, CVE-2020-3837, CVE-2020-9907, CVE-2021-30983, Linux, pkexec, polkit, PwnKit

The Cybersecurity and Infrastructure Security Agency (CISA) has added eight vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include two Apple, Mitel, Google Chromium, and the RedHat “PwnKit” vulnerability (CVE-2021-4034) in Polkit’s pkexec tool.

Cybersecurity Attacks

Cyberattacks on WordPress plugin Modern WPBakery Page Builder Addons

H0lyGh0st ransomware actors target small and midsize businesses

ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks

Maui ransomware targets entities in the Healthcare and Public Health sector

MedusaLocker ransomware threat

CISA adds 8 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include PwnKit)

CISA adds Critical Microsoft diagnostics tool vulnerability to Catalog of exploited vulnerabilities

Symbiote: Linux malware ‘nearly impossible to detect’ threat

Microsoft exposes and disables Polonium activity targeting Israeli organizations

Atlassian fixes Critical Confluence RCE vulnerability (CVE-2022-26134) exploited in the wild