Microsoft Warns of TodayZoo Phishing Kit Used in Extensive Credential Stealing Attacks – Tempemail

Microsoft on Thursday disclosed an “extensive series of credential phishing campaigns” that takes advantage of a custom phishing kit that stitched together components from at least five different widely circulated ones with the goal of siphoning user login information. The tech giant’s Microsoft 365 Defender Threat Intelligence Team, which detected Continue Reading

Hackers Set Up Fake Company to Get IT Experts to Launch Ransomware Attacks – Tempemail

The financially motivated FIN7 cybercrime gang has masqueraded as yet another fictitious cybersecurity company called “Bastion Secure” to recruit unwitting software engineers under the guise of penetration testing in a likely lead-up to a ransomware scheme. “With FIN7’s latest fake company, the criminal group leveraged true, publicly available information from Continue Reading

Over 30 Countries Pledge to Fight Ransomware Attacks in US-led Global Meeting – Tempemail

Representatives from the U.S., the European Union, and 30 other countries pledged to mitigate the risk of ransomware and harden the financial system from exploitation with the goal of disrupting the ecosystem, calling it an “escalating global security threat with serious economic and security consequences.” “From malign operations against local Continue Reading

Top scientists reveal death threats and physical attacks over Covid-19- Tempemail

A survey by a scientific journal shows that scientists who have spoken publicly about Covid-19 and the pandemic caused by the virus have received death threats and sometimes even have been victims of physical violence. The journal Nature polled 321 scientists and discovered that dozens who had made public appearances Continue Reading

MysterySnail attacks with Windows zero-day- Tempemail

Executive Summary In late August and early September 2021, Kaspersky technologies detected attacks with the use of an elevation of privilege exploit on multiple Microsoft Windows servers. The exploit had numerous debug strings from an older, publicly known exploit for vulnerability CVE-2016-3309, but closer analysis revealed that it was a Continue Reading

New Patch Released for Actively Exploited 0-Day Apache Path Traversal to RCE Attacks – Tempemail

The Apache Software Foundation on Thursday released additional security updates for its HTTP Server product to remediate what it says is an “incomplete fix” for an actively exploited path traversal and remote code execution flaw that it patched earlier this week. CVE-2021-42013, as the new vulnerability is identified as, builds Continue Reading

New Study Links Seemingly Disparate Malware Attacks to Chinese Hackers – Tempemail

Chinese cyber espionage group APT41 has been linked to seemingly disparate malware campaigns, according to fresh research that has mapped together additional parts of the group’s network infrastructure to hit upon a state-sponsored campaign that takes advantage of COVID-themed phishing lures to target victims in India. “The image we uncovered Continue Reading

Republican Thomas Massie attacks pro-Israel group over Iron Dome criticism- Tempemail

A Republican lawmaker has accused a pro-Israel group of “foreign interference in our elections” after it denounced him for not backing Iron Dome. Congressman Thomas Massie attacked the American Israel Public Affairs Committee (AIPAC) after it criticised him on social media. An AIPAC Facebook advert read: “Efforts to cut, add Continue Reading

Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks – Tempemail

Microsoft on Wednesday disclosed details of a targeting phishing campaign that leveraged a now-patched zero-day flaw in its MSHTML platform using specially-crafted Office documents to deploy Cobalt Strike Beacon on compromised Windows systems. “These attacks used the vulnerability, tracked as CVE-2021-40444, as part of an initial access campaign that distributed Continue Reading

Experts Link Sidewalk Malware Attacks to Grayfly Chinese Hacker Group – Tempemail

A previously undocumented backdoor that was recently found targeting an unnamed computer retail company based in the U.S. has been linked to a longstanding Chinese espionage operation dubbed Grayfly. In late August, Slovakian cybersecurity firm ESET disclosed details of an implant called SideWalk, which is designed to load arbitrary plugins Continue Reading