Windows Patching – Study Reveals it as Headache
It’s a known fact that many attacks takes place due to a presence of vulnerabilities and exploits persists in the software that has not been updated, but the covid nightmare…
Apache Zero Day Fix Insufficient – Update Again
A patch that was released to fix a path traversal bug in Apache HTTP Server is insufficient in protecting against the vulnerability and could allow for remote code execution (RCE).…
Air Gaps Exhausted – Indian Security Policy
India has announced a new security policy for its power sector and specified a grade of isolation it says exceeds that offered by air gaps. The much hyped air gap…
Python Ransomware Encrypts VMWare
A recently attack has been observer employing a Python-based ransomware variant to target an organization’s VMware ESXi server and encrypt all virtual disks. The attack involved the use of a…
Russia Tops Nation-State Attacks
Russia is the source of the mammoth nation-state cyberattacks Microsoft has observed in the past year (58%), followed by North Korea (23%), Iran (11%), China (8%), and South Korea, Vietnam,…
FormBook Exploits Office 365 Zero Day
A new malware campaign has been discovered using a new version of the Formbook malware. The recent variant, identified exploits a recently discovered zero-day vulnerability in Office 365, CVE-2011-40444 Formbook…
Operation Ghost Shell
A new threat actor targeting organizations in the aerospace and telecommunications sectors with the ShellClient malware as part of Operation GhostShell. ShellClient is previously undocumented and stealthy RAT used to…
APT 41 Eyes On India with Covid Scams
Researchers uncovered three phishing schemes targeting Indian nationals. APT41 a Chinese state-sponsored cyberthreat group that has carried out espionage activity in parallel with financially motivated operations. The group targets many…