Microsoft left admin-to-kernel exploit in Windows untouched for half a year
Microsoft recently fixed an admin-to-kernel vulnerability in Windows, six months after security experts from Avast brought the problem to the attention of the company.
Hackers from the Lazarus Group, affiliated with the North Korean government, actively used the zero-day exploit. It involves the... Read more
Lazarus Group strikes at kernel level via Windows AppLocker driver
Lazarus Group hackers broke into systems via a zero-day vulnerability in the Windows AppLocker driver and gained access at the kernel level. An enhanced version of their rootkit allowed them to disable security tools on affected systems.
According to Avast research, a zero-day vulnerability in t... Read more
Lazarus hackers use open-source tools for malware infection
North Korean hackers from Lazarus have launched two new sophisticated attacks. Their methods rely on open-source tools and frameworks to install malware, Cisco research has shown.
According to the researchers, the hackers from the Lazarus group, known for the notorious WannaCry ransomware attack... Read more
‘North Korean hackers breached multiple European defense contractors’
According to security provider ESET, North Korean cybercriminals penetrated defense contractors across Europe.
ESET did not specify the contractors involved. According to the security provider, employees of European defense contractors were approached by fake Amazon recruiters from 2021 onwards... Read more
Fancy Bear imposters launch wave of extortion demands
Targets must pay thousands in Bitcoin or face DDoS attacks.
Last week, the digital security firm Radware published a blog post that included extortion notes from hackers. These notes had been sent to a variety of companies around the world, according to Radware.
In each of these "ransom notes... Read more
Global hack campaign focuses on nuclear and energy companies
A global hack campaign called Operation Sharpshooter focuses on nuclear, defence, energy and financial companies. That's what McAfee says in a new report.
The campaign has already infiltrated dozens of companies, mainly in the United States and other English-speaking countries. The hackers post rogu... Read more