Recent Security News
-
Windows Zero-Day Exploited in Attacks on Financial Market Traders
February 14, 2024 at 07:09AM Microsoft’s latest Patch Tuesday resolves over 70 vulnerabilities, including two zero-day exploits used for financial market trader attacks by the Water Hydra threat group. Trend Micro described the attacks, outlining the exploitation of CVE-2024-21412 to deliver DarkMe malware. It affects Windows Server 2019, Windows Server 2022, Windows 10, and Windows…
-
Albanian Authorities Accuse Iranian-Backed Hackers of Cyberattack on Institute of Statistics
February 14, 2024 at 07:09AM Albania’s cybersecurity authorities accused a hacker group sponsored by the Iranian government of a cyberattack on the Institute of Statistics. The attack affected 40 computers. In the past, Albania has blamed Iran for cyberattacks, leading to the cutting of diplomatic relations. The United States, NATO, and the EU supported Albania…
-
Bumblebee malware wakes from hibernation, forgets what year it is, attacks with macros
February 14, 2024 at 06:06AM The Bumblebee malware loader, initially linked to ransomware groups, has resurfaced using old-school VBA macros to target US organizations in a new campaign. Its reappearance signals a change in attack tactics, bucking the trend towards more advanced methods. Although this may seem outdated, vigilance and security measures should not be…
-
SAP Patches Critical Vulnerability Exposing User, Business Data
February 14, 2024 at 05:21AM SAP released 13 new and updated security notes addressing critical and high-severity vulnerabilities in its February 2024 Security Patch Day. The critical issue, CVE-2024-22131, allows unauthorized access and potential system unavailability. Customers are advised to apply patches promptly due to the risk of exploitation by threat actors targeting SAP products.…