CVE-2024-21412: Water Hydra Targets Traders With Microsoft Defender SmartScreen Zero-Day

February 14, 2024 at 07:29AM The APT group Water Hydra has been exploiting the Microsoft Defender SmartScreen vulnerability (CVE-2024-21412) in campaigns targeting financial market traders. The vulnerability has been patched by Microsoft, and it was discovered and disclosed by the Trend Micro Zero Day Initiative. Water Hydra has used sophisticated methods to bypass SmartScreen and … Read more

CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day

February 13, 2024 at 03:16PM Water Hydra exploited the zero-day Microsoft Defender SmartScreen vulnerability (CVE-2024-21412) targeting financial market traders. The Trend Micro Zero Day Initiative discovered and disclosed this, cooperating with Microsoft to ensure a rapid patch. Water Hydra also used similar tactics in a campaign targeting traders. The group’s attack patterns reflect high levels … Read more

Hackers target Microsoft SQL servers in Mimic ransomware attacks

January 9, 2024 at 01:57PM Financially motivated Turkish hackers are targeting Microsoft SQL servers worldwide, encrypting victims’ files using Mimic ransomware. Tracked as RE#TURGENCE, the attacks have hit targets in the EU, US, and Latin America. The hackers compromise insecure MSSQL servers using brute force attacks, then deploy ransomware payloads and execute other malicious activities. … Read more

Apache OFBiz zero-day pummeled by exploit attempts after disclosure

January 8, 2024 at 12:50PM SonicWall has observed thousands of daily exploitation attempts targeting the Apache OFBiz zero-day vulnerability. The severity is near-maximum, with a 9.8 rating, allowing attackers to bypass authentication and execute arbitrary code. They urge immediate upgrading to OFBiz version 18.12.11 to address this and another equally serious vulnerability. Apache OFBiz has … Read more

Apache ERP Zero-Day Underscores Dangers of Incomplete Patches

January 4, 2024 at 04:08PM An unknown group has targeted a zero-day vulnerability in Apache’s OfBiz enterprise resource planning framework, allowing attackers to access sensitive information and remotely execute code. The incident underscores the importance of thorough patch analysis, as attackers often find ways to bypass software fixes. Similar patch failures have been seen with … Read more

Microsoft Gives Admins a Reprieve With Lighter-Than-Usual Patch Update

December 12, 2023 at 06:18PM Microsoft’s December 2023 security update featured fewer vulnerabilities for IT and security teams to address compared to recent months. The update addressed 36 vulnerabilities, including 4 critical ones and 11 likely to be exploited. Despite this, security experts advise vigilance due to potential attack threats posed by certain bugs. This … Read more

Malwarebytes Labs Reveals 50% Uptick in Credit Card Skimming in Advance of the Holiday Shopping Season

November 14, 2023 at 11:33PM Malwarebytes has released new threat research showing an increase in credit card skimming for the holiday shopping season. The report highlights the Kritec campaign, which has compromised hundreds of websites with realistic payment templates. Malvertising is also on the rise, with a 42% increase in incidents in the US. Malwarebytes … Read more