MSBuild Abused for Beacon Cobalt Strike

MSBuild Abused for Beacon Cobalt Strike

Researchers recently observed several malicious campaigns abusing Microsoft Build Engine (MSBuild) to execute a Cobalt Strike payload on compromised machines. MSBuild is a free and open-source build toolset for managed code…
FlagPro Malware linked with Chinese Attackers

FlagPro Malware linked with Chinese Attackers

Researchers have spotted a China-linked BlackTech cyberespionage group targeted Japanese companies using new malware tracked as Flagpro that targeted multiple companies in Defense, Media, and Communications industries several times.  Flagpro has been…
Log4j Update ! Even 2.17 is Exploitable

Log4j Update ! Even 2.17 is Exploitable

Another security vulnerability impacting the Log4j logging library was published as CVE-2021-44832. This new security vulnerability is affecting versions up to 2.17.0, which was previously thought to be fixed. This vulnerability is…
Wireless InterChip Privilege Escalation Attack

Wireless InterChip Privilege Escalation Attack

Vulnerabilities in wireless chip designs could allow malicious hackers to steal data and passwords from devices, according to security researchers. Wireless devices often use radio components with shared resources, combination…
Inetum Hit By Black Cat Ransomware

Inetum Hit By Black Cat Ransomware

French IT services company Inetum Group was hit by a ransomware attack a few days before the Christmas holiday. Inetum is an agile IT services company that provides digital services…
Dridex Spreads with Omicron Themed Campaign

Dridex Spreads with Omicron Themed Campaign

A recent Dridex campaign is mocking the researchers and victims taunting them with a COVID-19 funeral assistance helpline number The phishing messages use weaponized Word or Excel attachments to install…