Homeland Security Today

Fallout Exploit Kit Used in Malvertising Campaign to Deliver GandCrab Ransomware

Towards the end of August 2018, FireEye identified a new exploit kit (EK) that was being served up as part of a malvertising campaign affecting users in Japan, Korea, the Middle East, Southern Europe, ...
Forbes

Play Ransomware Zero-Day Attacks — What You Need To Know

A joint investigation by the Microsoft Threat Intelligence Center and Microsoft Security Response Center found that a zero-day vulnerability in the Windows Common Log File System had been exploited by ...

Infosec exec sold eight zero-day exploit kits to Russia, says DoJ

PLUS: Fake ransomware group exposed; EC blesses Google's big Wiz deal; Alleged sewage hacker cuffed; And more Infosec in Brief The former General Manager of defense contractor L3Harris’s cyber ...
Homeland Security Today

Exploit Kits: The Silent Web Threat Affecting Billions

When we talk to people whose computers have been infected, they often ask how it happened. In a growing number of cases, they have been doing nothing more than reading a news website or browsing for ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
Bleeping Computer

Cybercriminals exploit AI hype to spread ransomware, malware

Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads. This development follows a trend that has been ...
来自MSN

Play ransomware crims exploit SimpleHelp flaw in double-extortion schemes

Groups linked with the Play ransomware have exploited more than 900 organizations, the FBI said Wednesday, and have developed a number of new techniques in their double-extortion campaigns - including ...
Bleeping Computer

Microsoft: SharePoint flaws exploited in Warlock ransomware attacks

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks targeting the recently patched ToolShell zero-day exploit chain. Non-profit ...
Dark Reading

Medusa Ransomware Actors Exploit Critical Fortra GoAnywhere Flaw

Threat actors armed with Medusa ransomware are actively exploiting a maximum-severity security vulnerability in Fortra's GoAnywhere managed file transfer (MFT) product, sparking more questions about ...
来自MSN

Akira Ransomware Targets SonicWall VPNs with Zero-Day Exploit

In a rapidly evolving cybersecurity landscape, the proliferation of ransomware continues to pose significant challenges to organizations worldwide. Recently, a new strain known as Akira Ransomware has ...
SDxCentral

Ransomware Gangs Exploit VMware Log4Shell Vulnerability

“Our investigation shows that successful intrusions in these campaigns led to the deployment of the Night Sky ransomware,” Microsoft noted. Identified earlier this month by Twitter group ...
SDxCentral

Rackspace: ransomware incident was caused by ‘zero-day’ exploit, Hosted Exchange ...

Rackspace has said its major security incident with its Hosted Exchange service was caused by a ‘zero-day’ exploit, and while the company continues to recover customer data it will not be bringing ...