Experts Detail A Recent Remotely Exploitable Windows Vulnerability
More details have emerged about a security feature bypass vulnerability in Windows NT LAN Manager (NTLM) that was addressed by Microsoft as …
Windows
Windows RDP servers are being abused to amplify DDoS attacks
Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to bounce and amplify junk traffic as part of DDoS attacks, …
Microsoft SolarWinds analysis: Attackers hid inside Windows systems by wearing the skins of legit processes
The SolarWinds hackers triggered one of their Cobalt Strike implants in the firm’s network through a cunning VBScript that was activated by …
Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’
Microsoft is taking matters into its own hands when it comes to companies that haven’t yet updated their systems to address the critical …
Microsoft patches anti-virus bug that allowed boobytrapped files to run malicious code when scanned
This week, as part of its long-standing monthly “Patch Tuesday” regime, Microsoft released security updates to fix more than 80 flaws …
Microsoft Patch Tuesday for January 2021 fixes 83 flaws, including an actively exploited issue
Microsoft Patch Tuesday security updates for January 2021 address 83 vulnerabilities, including a critical flaw actively exploited in the …
This new phishing attack uses an odd lure to deliver Windows trojan malware
A new phishing campaign is attempting to lure victims into downloading malware which gives cyber criminals full control over infected …
New ElectroRAT employed in a wide-ranging operation targeting cryptocurrency users
Researchers uncovered a large scale operation targeting cryptocurrency users with a previously undetected multiplatform RAT named …
Hackers target cryptocurrency users with new ElectroRAT malware
Security firm Intezer Labs said it discovered a covert year-long malware operation where cybercriminals created fake cryptocurrency apps in …
Golang malware infecting Windows, Linux servers with XMRig miner
Upon execution, the worm checks if a process on the infected machine is listening on port 52013. The existence of a listener on this port …
New Golang-based Crypto worm infects Windows and Linux servers
Experts from Intezer discovered a new and self-spreading Golang-based malware that targets Windows and Linux servers. Experts from Intezer …
Signing executables with HSM-backed certificates using multiple Windows instances
Customers use code signing certificates to digitally sign software, documents, and other certificates. Signing is a cryptographic tool that …