December 27, 2023 at 08:24AM Chinese threat actors exploited a new zero-day in Barracuda’s Email Security Gateway appliances, deploying backdoors on a limited number of devices. The issue, tracked as CVE-2023-7102, allowed arbitrary code execution via a third-party library. Barracuda released a security update and remediated compromised appliances. This highlights the adaptability of the threat … Read more
December 27, 2023 at 06:56AM Barracuda deployed remote patches on December 21 to address a zero-day vulnerability in its Email Security Gateway (ESG) appliances exploited by Chinese hackers. A subsequent wave of security updates targeted compromised appliances. The vulnerability, tracked as CVE-2023-7102, is attributed to a weakness in a third-party library. The company reassured customers … Read more
December 27, 2023 at 06:12AM China-linked hackers are persistently targeting Barracuda Email Security Gateway (ESG) appliances. In May 2023, a zero-day vulnerability, CVE-2023-2868, was used to deliver malware and steal data, attributed to cyberespionage group UNC4841. Subsequently, a new zero-day vulnerability, CVE-2023-7102, impacting the ‘Spreadsheet::ParseExcel’ library, was exploited to deliver new malware variants. Barracuda issued … Read more
December 21, 2023 at 05:40PM New data from EasyDMARC shows a 7.5% increase in intercepted phishing emails from January 2022 to November 2023. The research tracked a rise in flagged emails imitating legitimate domains and a 24% increase in potentially harmful emails per domain. The CEO emphasizes the need for businesses to implement email authentication … Read more
December 20, 2023 at 04:59PM Israel National Cyber Directorate warns of phishing emails posing as F5 BIG-IP zero-day security updates, deploying data wipers for Windows and Linux. Israeli organizations targeted by pro-Palestinian and Iranian hacktivists since October. New phishing attack delivers data wipers through fake F5 update emails. Wipers communicate with a Telegram channel, posing … Read more
December 18, 2023 at 03:20PM Attackers have developed a novel method called “SMTP smuggling” to exploit vulnerabilities in email servers, allowing them to send spoofed emails from legitimate domains and bypass email security checks. This technique affects servers from Microsoft, GMX, and Cisco, potentially putting organizations at risk for targeted phishing attacks. Microsoft and GMX … Read more
December 18, 2023 at 11:39AM Security researcher Ben Barnea revealed two security flaws in Microsoft Windows that were patched in 2023. These flaws, CVE-2023-35384 and CVE-2023-36710, could be exploited by threat actors to achieve remote code execution on Outlook without user interaction. Mitigation recommendations include microsegmentation and addressing NTLM vulnerabilities. For further updates, follow the … Read more
December 16, 2023 at 12:36AM Microsoft is alerting about an increase in malicious activities by an emerging threat group, Storm-0539, targeting retail entities through advanced email and SMS phishing attacks. The attacks aim to steal credentials and session tokens to conduct gift card fraud and theft during the holiday shopping season. The group is financially … Read more
December 13, 2023 at 03:41PM A recent surge in BazarCall attacks includes the exploitation of Google Forms to fabricate and dispatch fraudulent payment receipts, augmenting the appearance of authenticity. Initially surfaced in 2021, BazarCall employs phishing tactics via sham payment notifications from reputable companies. The updated method entails sending false payment confirmations using Google Forms, … Read more
December 13, 2023 at 10:42AM Cybersecurity firm Abnormal Security reported that threat actors behind the BazaCall phishing attacks are now using Google Forms to enhance the credibility of their scheme, demonstrating a new attack variant. This method aims to bypass secure email gateways by leveraging trusted domains and dynamically generated URLs. Additionally, recruiters are being … Read more