Telegram, Discord used as attack launch pad
Threat actors make use of infrastructure of popular messaging apps such as Telegram and Discord to host, launch, and execute a variety of malware attacks. The malware is used along…
CrowdStrike new capabilities – Enhanced Threat hunting and Container Security
CrowdStrike introduced a new cloud threat-hunting product Falcon OverWatch Cloud Threat Hunting and expanded capabilities to secure containers. A service for finding hidden and advanced threats originating, operating, or persisting…
Lightning Framework – A Linux Malware
Researchers has published a technical analysis of Lightning Framework, an undetected Linux threat. The Lightning Framework has a modular structure, consisting of a downloader and a core module, with a number…
Bitcoins Seized from Maui Ransomware Attack
The U.S. DoJ has seized $500,000 worth of Bitcoin from North Korean threat actors who used the Maui ransomware to target several organizations worldwide. A complaint filed in the District…
Drupal issues Patches addressing flaws
Drupal has released four patches addressing vulnerabilities. One of them has been rated critical and the other three moderately critical. The critical vulnerability, tracked as CVE-2022-25277, affects Drupal 9.3 and…
Google ZeroDay Actively Exploited by Candiru
Vulnerabilities persisted in the Chrome browser has been linked to an Israeli spyware company and its efforts to spy on journalists. Google patched an unknown vulnerability in Chrome, dubbed CVE-2022-2294 earlier…
SonicWall Addresses Critical Injection Flaw
SonicWall addressed a critical SQL injection vulnerability, tracked as CVE-2022-22280 with CVSS score 9.4, in Analytics On-Prem and Global Management System (GMS) products. Improper Neutralization of Special Elements used in an…
Luna Ransomware Written in Rust
A new ransomware family dubbed Luna was identified that was written in Rust. It becomes the third strain to use the language after BlackCat and Hive. There are many operating…