Recent Security News
-
CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign
January 12, 2024 at 02:38AM This blog summarizes the exploitation of CVE-2023-36025 by the Phemedrone Stealer campaign, which targets web browsers, cryptocurrency wallets, and messaging apps. The malware bypasses Windows Defender SmartScreen, allowing threat actors to execute malicious scripts. Despite Microsoft’s patch, the vulnerability continues to be exploited, posing a risk to organizations. Advanced security…
-
Drivers: We’ll take that plain dumb car over a flashy data-spilling internet one, thanks
January 12, 2024 at 02:34AM Most people at CES are uncomfortable with car manufacturers sharing their data with third parties, with 72% expressing discomfort. Many are unaware of the extent of data collection by their cars. However, there is a willingness to trade personal data for driver personalization and better insurance rates, suggesting a need…
-
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
January 12, 2024 at 02:03AM The U.S. CISA added a critical security vulnerability in Microsoft SharePoint Server to its catalog, noting evidence of active exploitation and the availability of patches from Microsoft. Security researcher Nguyễn Tiến Giang demonstrated an exploit at a hacking contest, with federal agencies advised to apply the patches by January 31,…
-
Trend Micro Defends FIFA World Cup from Cyber Threats
January 12, 2024 at 12:11AM Trend Micro collaborated with INTERPOL to defend the FIFA World Cup, monitoring and reporting on potential cyber threats. They proactively identified and shared detections of malicious websites and scams, such as fake ticket sales, streaming sites, survey scams, and crypto scamming. Trend Micro aims to continue making the digital world…
-
Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign
January 12, 2024 at 12:11AM Pikabot malware, associated with the Water Curupira intrusion set, was used in phishing campaigns through 2023. Similar to Qakbot, it consists of a loader and core module enabling unauthorized access. The campaigns targeted victims via spam emails with malicious attachments, evolving to include a PDF file delivery method. Organizations are…