Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage Threats Analyst Threats Analyst

Recently, we discovered that the cryptomining trojan z0Miner has been taking advantage of the Atlassian’s Confluence remote code execution (RCE) vulnerability assigned as CVE-2021-26084, which was disclosed by Atlassian in August. Read More HERE…

Read more

Water Basilisk Uses New HCrypt Variant to Flood Victims with RAT Payloads Threat Researcher Sr. Threat Researcher

In this blog entry we look into a fileless campaign that used a new HCrypt variant to distribute numerous remote access trojans (RATs) in victim systems. This new variant also uses an updated obfuscation mechanism which we detail. Read More HERE…

Read more

This Week in Security News – September 17, 2021 VP, Threat Intelligence

2021 Midyear Cybersecurity Report and Apple emergency patches fix zero-click iMessage bug used to inject NSO spyware Read More HERE…

Read more

Midyear 2021 Cybersecurity Landscape Review: Attacks From All Angles Abound

Here is a rundown of data related to the crucial security issues that enterprises faced during this period, as examined in our report, “Attacks From All Angles: 2021 Midyear Cybersecurity Report.” Read More HERE…

Read more

Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus Threats Analyst

Citizen Lab has released a report on a new iPhone threat dubbed ForcedEntry. This zero-click exploit seems to be able to circumvent Apple’s BlastDoor security, and allow attackers access to a device without user interaction. Read More HERE…

Read more

1H’2021 Security Review Shows Active Cloud Attacks VP, Threat Intelligence

Trend Micro’s midyear report highlights the growing importance of cloud security as attacks increase in frequency and complexity. Read More HERE…

Read more

APT-C-36 Updates Its Long-term Spam Campaign Against South American Entities With Commodity RATs Threat Researcher Threat Researcher

In 2019, we wrote a blog entry about a threat actor, known as APT-C-36 or Blind Eagle, targeting entities in Colombia and other South American countries with spam emails. We have continued tracking this threat actor and share our new findings about APT-C-36’s ongoing spam campaign during that monitoring phase. Read More HERE…

Read more

This Week in Security News – September 10, 2021 VP, Threat Intelligence

Biden announces cybersecurity initiative partnership, US Government seeks public feedback on draft federal zero trust strategy and more. Read More HERE…

Read more

Remote Code Execution 0-Day (CVE-2021-40444) Hits Windows, Triggered Via Office Docs

Microsoft has disclosed the existence of a new zero-day vulnerability that affects multiple versions of Windows. This vulnerability (designated as CVE-2021-40444) is currently delivered via malicious Office 365 documents and requires user input to open the file to trigger. Read More HERE…

Read more