Lokibit alert on high
LokiBot is an information stealer that comes with a range of built-in capabilities to extract information from different applications and files. The malware was first spotted in mid-2010 when it…
Fileless Malware , On a rise to be worried
According to a recent Cisco study title 'Threat Landscape Trends,' fileless threats have topped as the most common critical-severity cybersecurity threat to endpoints in the threat category list. Endpoint security…
Posted inAPT cloudsecurity cybersecurity
Azure victim of Gadolinium – APT 40
Security researchers at Microsoft say they upended a hacking campaign that used the company’s own Azure commercial cloud service as part of the command-and-control network for its malware. The hacking…
Posted inSecurity Acquisition Zero Trust
Crowdstrike Aquires Preempt Zero Trust provider
Crowdstrike agreed to acquire Preempt Security, a provider of Zero Trust and access control technology, in a deal valued at roughly $96 million. Preempt founded in 2014 is yet another…
Posted inActive Directory cybersecurity Data Breaches
Zerologon ! Goes Wild
Threat actors are activly exploiting the Windows Server Zerologon vulnerability in recent attacks. Microsoft strongly recommends all Windows administrators to install the security updates.As part of the August 2020 Patch…
Posted incloudsecurity
Microsoft unifies Defender umbrella… Ignite 2020
Defender is getting ignited .. more products are getting in to one umbrella. Initially change of windows defender to Microsoft defender in early 2020, this comes as a products unification…
Posted inAPT cybersecurity Endpoint Security
North Korea or Russia is Lazarus belongs
North Korean state-sponsored cybercriminals have been time and again accused of buying access to pre-hacked servers from other threat actors. However, lately, connections have emerged between the North Korea-based Lazarus…
Aruba Clear pass RCE bypassed
A critical vulnerability has been patched in Aruba ClearPass Policy Manager that exposes host systems to remote exploitation. The flaw is classed as an unauthenticated remote code execution (RCE) vulnerability…