Tag: PowerShell
-
Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows
A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from …
-
Microsoft PowerShell Gallery Littered with Critical Vulnerabilities
If you give a hoot about code security, you already know that popular code-package managers and repertories, such as Node Package Manager …
-
Critical Flaws in PowerShell Gallery Enable Malicious Exploits
Aqua Nautilus has uncovered critical vulnerabilities persisting within the PowerShell Gallery, resulting in a fertile ground for malicious …
-
PowerShell Gallery Prone to Typosquatting, Other Supply Chain Attacks
Microsoft’s PowerShell Gallery presents a software supply chain risk because of its relatively weak protections against attackers who want …
-
Flaws in Microsoft’s PowerShell Gallery may cause supply chain attacks
Significant flaws in the PowerShell Gallery’s policy make typosquatting attacks inevitable while also making it difficult for users to …
-
Experts Uncover Weaknesses in PowerShell Gallery Enabling Supply Chain Attacks
Active flaws in the PowerShell Gallery could be weaponized by threat actors to pull off supply chain attacks against the registry’s users. …
-
Vice Society gang is using a custom PowerShell tool for data exfiltration
Vice Society ransomware operators have been spotted using a PowerShell tool to exfiltrate data from compromised networks. Palo Alto Unit 42 …
-
Vice Society Ransomware Using Stealthy PowerShell Tool for Data Exfiltration
Threat actors associated with the Vice Society ransomware gang have been observed using a bespoke PowerShell-based tool to fly under the …
-
Gootloader malware updated with PowerShell, sneaky JavaScript
The operators behind Gootloader, a crew dubbed UNC2565, have upgraded the code in cunning ways to make it more intrusive and harder to …
-
Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698)
Microsoft has delivered fixes for 50+ vulnerabilities, including a Windows SmartScreen bypass flaw (CVE-2022-44698) exploited by attackers …
-
How to hack an unpatched Exchange server with rogue PowerShell code
Just under two months ago, some worrying bug news broke: a pair of zero-day vulnerabilities were announced in Microsoft …
-
Experts spotted a new undetectable PowerShell Backdoor posing as a Windows update
Cybersecurity researchers warn of a new PowerShell backdoor that disguises itself as part of the Windows update process to avoid detection. …
●●●