Malware Archives - Page 6 of 30

Russian authorities round up 14 REvil ransomware gang members

Cybersecurity Attacks, Malware / By Frank Crast / January 15, 2022 January 15, 2022 / FBI, FSB, Ransomware, REvil, Russia

Russian authorities have arrested 14 members of the infamous REvil ransomware gang and dismantled the network after a raid across Russian cities Moscow, St. Petersburg and Lipetsk.

Hackers can exploit doorLock HomeKit vulnerability on iPhones to launch DoS attacks

Malware, Mobile Security, Vulnerabilities & Exploits / By Frank Crast / January 4, 2022 January 4, 2022 / doorLock, DOS, HomeKit, iOS, iPhone

Hackers can exploit an iPhone HomeKit vulnerability dubbed “doorLock” on iPhones to launch persistent denial of service (DoS) attacks, a researcher says.

Shutterfly targeted with ransomware attack

Cybersecurity Attacks, Malware / By Frank Crast / December 27, 2021 December 27, 2021 / Conti, Cyberattack, malware, Ransomware

California-based photography and image sharing company Shutterfly LLC has been targeted in a ransomware attack.

FBI: Cuba ransomware compromised 49 critical infrastructure entities

Cybersecurity Attacks, Malware / By Frank Crast / December 4, 2021 December 4, 2022 / CobaltStrike, Cuba, Cyberattack, FBI, PowerSHell, PsExec, Ransomware, RDP

The Federal Bureau of Investigation (FBI) has issued a cybersecurity alert for ransomware attacks that have compromised 49 entities in five critical infrastructure sectors, such as financial, government, healthcare, manufacturing, and information technology.

Attackers exploit Windows Installer zero-day vulnerability (CVE-2021-41379)

Malware, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / November 24, 2021 November 24, 2021 / CVE-2021-41379, Group Policy, Installer, Windows

Bad actors have been exploiting a previously patched Windows Installer zero-day privileged escalation vulnerability CVE-2021-41379.

Squirrelwaffle uses Office docs to infect victim systems with CobaltStrike

Malware / By Frank Crast / November 13, 2021 November 13, 2021 / CobaltStrike, malware, Squirrelwaffle

Researchers have discovered a new malware threat dubbed “Squirrelwaffle” that uses Microsoft Office documents to infect victim systems with CobaltStrike.

Attackers exploit ZOHO ManageEngine ADSelfService Plus software

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / November 11, 2021 November 11, 2021

Attackers have been exploiting vulnerable ZOHO ManageEngine ADSelfService Plus software as part of a targeted campaign.

Embedded malware discovered in NPM package ua-parser-js

Application Security, Malware, Security Updates & Patches, Third-Party Security, Vulnerabilities & Exploits / By Frank Crast / October 27, 2021 October 27, 2021 / JavaScript, malware, NPM, ua-parser-js, User-Agent

Embedded malware has been discovered in an NPM package ua-parser-js, a popular JavaScript library designed to detect browser, engine, OS, CPU, and device type/model from User-Agent data.

Trickbot tops most popular malware in September 2021

Malware, Vulnerabilities & Exploits / By Frank Crast / October 11, 2021 October 11, 2021 / Agent Tesla, Floxif, Formbook, Glupteba, malware, njRAT, Ramnit, Remcos, Tofsee, Trickbot, XMRig

Check Point Research has revealed that Trickbot is once again the most popular malware, according to a Global Threat Index report for September 2021. A remote access trojan, njRAT, was also added to the top 10 report for first time ever.

FontOnLake malware targets Linux systems

Cybersecurity Attacks, Malware / By Frank Crast / October 11, 2021 October 11, 2021 / Boost, C/C++, C2, ESET, FrontOnLake, Linux, malware, Poco, Protobuf, Trojan

A previously unknown malware family dubbed FontOnLake is targeting Linux systems. The malware is made up of “custom and well-designed modules.”