Cybersecurity, new vulnerability for Exchange Server: PROXYTOKEN
Yoroi: The flaw, CVE-2021-33766, allows a threat actor to monitor, steal or alter corporate email communications.
Cybercrime, JsOutProx is evolving and started targeting western financial organizations
Yoroi cybersecurity experts: The malware (aka TH-264) has improved protection mechanisms and can operate as a silent info stealer or run offensive plugins.
Cybersecurity, serious vulnerability on SolarWinds Serv-U
Yoroi: All versions up to 15.2.3 HF1 are involved and there have already been targeted cybercrime attacks. Update the systems now!
Cyber Espionage, WayBack campaign targets EU and Italian organizations
Yoroi cybersecurity experts: The threat actors, maybe linked to Gorgon/Subaat, spread over 900 malware via Internet Archive.
Cyber security, huge vulnerability discovered in F5 BIG-IP technologies
Yoroi-Cybaze experts: The flaw, the CVE-2020-5902, is caused by gaps in the management of particular HTTP requests by the TMUI management interface.
Cyber Security, 0-day vulnerability discovered on SOHO Netgear devices
Yoroi-Cybaze Experts: An attacker can execute arbitrary code on the target device by taking control of it without authentication. In addition, there is currently no patch.
Cybercrime, Italy targeted by Netwire
Cybaze/Yoroi-ZLab cyber security experts: The campaign to deliver the malware, an infostealer, shows similarities with techniques adopted in recent operations against italian manufacturing sector.
Cybercrime is spreading a new info-stealer dubbed Poulight
Yoroi ZLab cyber security experts: The malware is a .NET executable with likely Russian origin, it has advanced stealing capabilities and continues to evolve.
Malware families stereotypes improve the Cyber Threats Observatory
Developed by cyber security expert and Yoroi’s founder Marco Ramilli, it monitor trends over thousands even millions of samples. Now it will show Domains, Files and Processes of the malicious codes.
Cybercrime, a new crypto-botnet is targeting european organizations
Yoroi ZLab cyber security experts believe is the work of the “Outlaw Hacking Group”. The malware is a variant of “Shellbot”, with new IRC server and Monero pools.