June 11, 2019 Extortion Scam Threatens Website Owners With Reputational Damage 1 min read - A new extortion scam uses the threat of reputational damage to persuade website owners to pay a ransom fee.
June 11, 2019 Attack Campaign Exploits CVE-2019-2725, Abuses Certificate Files to Deliver Monero Miner < 1 min read - Researchers observed an attack campaign exploiting CVE-2019-2725 and abusing certificate files to deliver a Monero miner.
June 11, 2019 Windows 10 Zero-Day Lets Threat Actors Bypass Patch and Escalate Role to Admin Level 2 min read - Threat actors could use a recently discovered Windows 10 zero-day flaw to take over a computer and bypass local privilege escalation.
June 11, 2019 Fileless Attack Campaign Leverages PCASTLE to Distribute XMRig Monero-Mining Malware 2 min read - According to researchers, the fileless attack uses PCASTLE to distribute samples of XMRig, a well-known Monero-mining malware family.
June 10, 2019 Malvertising Campaign Infects Users With Buran Ransomware Via the RIG Exploit Kit 2 min read - A malvertising campaign is redirecting users to the RIG exploit kit, which then attempts to infect them with a new ransomware called Buran.
June 5, 2019 Maze Ransomware Adjusts Recovery Fee According to Device Type 2 min read - Security researchers spotted a campaign involving Maze ransomware that is basing the cost of recovering stolen data on the type of device its victim is using.
June 5, 2019 BlackSquid Malware Capable of Abusing 8 Exploits to Install XMRig Monero Miner 2 min read - The new BlackSquid malware is capable of abusing eight notorious exploits in its attempts to install the XMRig Monero miner.
June 4, 2019 Phishing Scam Leverages Fake List of Undelivered Emails to Trick Users Into Clicking < 1 min read - Researchers discovered a phishing scam that leverages a fake list of undelivered emails to trick users into clicking and offering up their login credentials.
June 3, 2019 New HiddenWasp Linux Malware Focused Solely on Achieving Targeted Remote Control < 1 min read - A new threat called HiddenWasp is different from other Linux malware in that it's focused solely on achieving targeted remote control of infected hosts.
June 3, 2019 New York Nonprofit Organization Traces Data Breach to Employee Email Accounts 2 min read - People Inc., a nonprofit organization based in New York state, has traced a recent data breach to compromised employee email accounts.