CISA adds Microsoft SharePoint vulnerability to the KEV Catalog

March 12, 2019

SLUB Backdoor Receives Commands From GitHub and Communicates Through Slack

2 min read - Security researchers have discovered that the new SLUB backdoor is receiving attack commands from GitHub and relying on Slack for communicating with its attackers.

March 11, 2019

More Than 2 Billion Unencrypted Records Exposed in Major Email Leak

2 min read - A recent security incident that began as an email leak exposed more than 2 billion records containing email addresses and other personal information.

March 6, 2019

Fileless Malware Targeting Brazilian and Thai Bank Customers With Multiple Threats

2 min read - Security researchers discovered a new fileless malware strain targeting bank customers in Brazil and Thailand with a hack tool and at least two infostealers.

March 6, 2019

Attack Campaign Using Fake Browser Updates to Deliver Ransomware and Banking Malware

2 min read - Researchers observed an attack campaign distributing fake browser updates to infect website visitors with ransomware and banking malware.

March 5, 2019

Instagram Hack Fools Social Media Influencers With Phony ‘Verified’ Badges

2 min read - Security researchers observed a Turkish-speaking group of cybercriminals using an Instagram hack to extort money, nude photos and other information from social media influencers.

March 4, 2019

Attack Campaign Targets Organizations Worldwide With New Qbot Banking Malware Variant

2 min read - Security researchers spotted a new attack campaign that's targeting organizations in several countries with a new variant of Qbot banking malware.

February 27, 2019

New Golang Brute-Forcer Targeting E-Commerce Sites to Steal Personal and Payment Data

2 min read - Researchers discovered new Trojan malware written in Golang that's targeting e-commerce websites with brute-force attacks.

February 27, 2019

Threat Actor Using Fake LinkedIn Job Offers to Deliver More_eggs Backdoor

2 min read - Security researchers discovered that a threat actor is targeting LinkedIn users with fake job offers to deliver the More_eggs backdoor.

February 26, 2019

Phishing Campaign Uses Fake Google reCAPTCHA to Distribute Malware

2 min read - A recent phishing campaign used a fake Google reCAPTCHA as part of its efforts to target Polish bank employees with malware.

February 26, 2019

Highly Critical Drupal Vulnerability Could Expose Sites to RCE Attacks, Developers Warn

2 min read - By exploiting a critical Drupal vulnerability recently disclosed by developers, attackers could potentially take control of websites and servers built on the CMS.