Cyber Espionage, Bahrain activists spied via iMessage exploit and Pegasus
Citizen Lab cybersecurity experts: The operation used the KISMET and FORCEDENTRY exploits. This one is able to circumvent Apple’s BlastDoor.
Cyber Espionage, Microsoft released mitigation measures for Exchange server
However, the company warns: Are not a remediation, nor are they full protection against attack. The APTs threat is still active.
Cybersecurity, Update Microsoft Exchange Now!
Many state sponsored APTs are exploiting the 4 vulnerabilities, despite Microsoft patched them, to attack servers in USA, Europe, Asia and Middle East.
Cybersecurity, Microsoft patches the last 0-day Exchange Server vulnerabilities
They have been used by the China state-sponsored APT Hafnium for cyber espionage purpose against US. Update the systems now!
Cybercrime, Agent Tesla campaign with the “purchase order” lure
New malspam campaign discovered by the cybersecurity expert Mich. The .gz attachment activates the malware infection chain
Cybercrime, ThunderX has been beaten by Tesorion
The cyber security experts built and spread a free drecryptor through the NoMoreRansom project. The malware could destroy some data irreversibly on purpose.
Cybercrime, MassLogger hits again in a international campaign
Organizations targeted in Austria, Belgium, Czech Republic, Denmark, France, UK, Germany, Italy, Netherlands, Spain, and U.S.. The attachments start the malware infection chain.
Cybercrime, Quakbot hits again with new mail and link
The malware infection chain is activated by the xls attachments. It contacts a link that downloads a PNG picture. This one is renamed as .exe and then executed.
Cybercrime, Mount Locker ransomware operation underway
Bleeping Computer cyber security experts: It exploit the double extortion scheme. Hhackers also steal unencrypted files and threaten victims to publish them on a data leak site.
Cybercrime, fake PayPal website downloads Racealer
The cyber security experts Malware Hunter Team and JAMESWT: The phishing site hides a malicious exe, disguised as the Desktop app.