‘Encrypted cyberattacks increase by 20 percent’
Cybercriminals increasingly encrypt attack traffic. A research report from Zscaler suggests that more than 85 percent of all cyberattacks were partially or fully encrypted from October 2021 through September 2022, up 20 percent year-over-year.
Encrypted attack traffic slows detection and analy... Read more
Check Point unveils widespread wiper malware Azov
Nine different families of wiper malware have emerged in 2022. Researchers discovered at least two more in the last week. Both have sophisticated codebases built to wreak havoc.
On Monday, Check Point's research division published a report on Azov, a previously unknown data wiper that experts ... Read more
New phishing threats exploit zero-day vulnerabilities in Windows
Recent phishing attacks use a zero-day Windows vulnerability to drop the Qbot malware without displaying Windows' usual security warnings, BleepingComputer reports.
When users download files from an 'untrusted' remote location, such as an Internet website or an email attachment, Windows adds a s... Read more
StrelaStealer can steal Outlook and Thunderbird accounts
A new infostealer dubbed 'StrelaStealer' is aggressively stealing account credentials from Outlook and Thunderbird, two commonly used email clients.
StrelaStealer's behaviour differs from most infostealers, which seek to steal data from various sources like browsers, cloud gaming apps and crypto... Read more
Researchers find dozens of PyPi packages pushing malware
Researchers at software supply chain security firm Phylum have discovered over two dozen Python packages that are pushing info-stealing malware on the PyPi registry.
The company published their findings in a report on the 1st of November. "Last week, our automated risk detection platform al... Read more
LinkedIn launches security features to remove fake profiles
LinkedIn has introduced new security features to curb the threat of malicious actors on its platform.
LinkedIn is the largest social media platform for businesses. There's been a rise in fake profiles and threat actors as of late. Due to its nature, malicious actors can get through the platform ... Read more
Typosquatting campaign impersonates 27 brands
27 brands from different sectors are being impersonated in a typosquatting campaign to trick unsuspecting users and install malware in their systems.
Typosquatting is as old as the internet. The technique involves a malicious actor creating a fake website with a domain name similar to a legitima... Read more
WIP19 malware threatens IT service providers and telecom companies
Security researchers from SentinelOne have discovered a new malware cluster dubbed WIP19. The malware variant is likely used by Chinese cybercriminals and primarily targets IT service providers and telecom companies.
According to the security researchers, the malware variant recently surfaced am... Read more
Maggie malware has gained backdoor access to hundreds of Microsoft SQL servers
Maggie is a new malware that has surfaced and is already gaining unauthorized backdoor access to several Microsoft SQL servers.
Researchers have recently discovered a malware named Maggie which has been gaining unauthorized backdoor access into several Microsoft SQL servers. John Aydinbas and Al... Read more
New malware variant found in hundreds of Linux and Windows devices
Researchers discovered a never-before-seen cross-platform malware variant that infected various Linux and Windows systems, including tiny office routers, FreeBSD machines and huge business servers.
Black Lotus Labs, the research branch of security firm Lumen, named the malware 'Chaos', a term th... Read more