AnyConnect Privilege Escalation

Cisco Secure Client Software for Windows, previously known as AnyConnect Secure Mobility Client, has been found to have a significant vulnerability (CVE-2023-20178) that enables attackers to elevate their privileges to the SYSTEM account without requiring any user interaction.
Learn more

Lazarus hackers target Windows IIS web servers for initial access

The Lazarus Group, a notorious hacking collective with ties to North Korea, has been exploiting vulnerabilities in Windows Internet Information Services (IIS) web servers as a means to infiltrate corporate networks
Learn more

New RDStealer malware steals from drives shared over Remote Desktop

Researchers at Cybereason have uncovered a new malware called RdStealer, which specifically targets Windows systems using Remote Desktop Protocol (RDP). This malware is designed to pilfer sensitive information from drives shared over RDP connections.
Learn more

MOVEit Transfer zero-day mass-exploited in data theft attacks

A zero-day vulnerability has been discovered in MOVEit Transfer, a file transfer software developed by Ipswitch. This vulnerability poses a risk of data theft from organizations.
Learn more

External Malware Delivery Via Microsoft Teams

A technique has been discovered by security researchers that enables the delivery of malware through Microsoft Teams, bypassing the file restrictions from external sources.
Learn more

Experts Detail Zero-Click Windows Vulnerability For NTLM Credential Theft

A security flaw in Microsoft's MSHTML platform has been revealed by researchers, which has the potential to enable attackers to circumvent integrity protections on targeted machines.
Learn more

Barracuda Finds Actively Exploited Vulnerability In Their Email Security Appliances

Barracuda Networks, a company specializing in email and network security solutions, has issued a warning to its customers regarding a targeted attack on its email security gateway (ESG) appliances.
Learn more

XWorm Malware Exploits Follina Vulnerability In New Wave Of Attacks

XWorm is a widely available malware with diverse capabilities, including data theft, DDoS attacks, ransomware operations, USB spreading, and the deployment of additional malware.
Learn more

The New Info-Stealing Malware Operations To Watch Out For

A recent report from cybersecurity intelligence firm KELA highlights a notable increase in the number of variants and malware-as-a-service (MaaS) operations during the first quarter of 2023, posing heightened risks to both organizations and individuals.
Learn more

Hackers Target Vulnerable Veeam Backup Servers Exposed Online

Cybercriminals are targeting unsecured Veeam backup servers that are publicly exposed on the internet.
Learn more