Bleeping Computer
-
Turla Hackers Target NGOs with TinyTurla-NG Secret Backdoor
Security researchers have identified and analyzed new malware they call TinyTurla-NG and TurlaPower-NG used by the Russian hacker group Turla to maintain access to a target’s network and to steal sensitive data. […]
-
Turla Hackers Target NGOs with New TinyTurla-NG Malware
Security researchers have identified and analyzed new malware they call TinyTurla-NG and TurlaPower-NG used by the Russian hacker group Turla to maintain access to a target’s network and to steal sensitive data. […]
-
New Qbot Malware Variant Exploits Fake Adobe Installer Popup
The developer of Qakbot malware, or someone with access to the source code, seems to be experimenting with new builds as fresh samples have been observed in email campaigns since mid-December. […]
-
Gold Pickaxe: The Terrifying Android, iOS Malware That Steals Your Face for Fraud
A new iOS and Android trojan named ‘GoldPickaxe’ employs a social engineering scheme to trick victims into scanning their faces and ID documents, which are believed to be used to generate deepfakes for unauthorized banking…
-
New Critical Exchange Bug Exploited as Zero-Day: Microsoft Solutions
Microsoft warned today in an updated security advisory that a critical vulnerability in Exchange Server was exploited as a zero-day before being fixed during this month’s Patch Tuesday. […]
-
LockBit Ransomware Attacks Fulton County, Georgia: What You Need to Know
The LockBit ransomware gang claims to be behind the recent cyberattack on Fulton County, Georgia, and is threatening to publish “confidential” documents if a ransom is not paid. […]
-
Zoom fixes critical privilege elevation vulnerability in Windows apps
The Zoom desktop and VDI clients and the Meeting SDK for Windows are vulnerable to an improper input validation flaw that could allow an unauthenticated attacker to conduct privilege escalation on the target system over…
-
New Critical Microsoft Outlook RCE Bug: Easy Exploitation
Microsoft says remote unauthenticated attackers can trivially exploit a critical Outlook security vulnerability that also lets them bypass the Office Protected View. […]
-
Microsoft Outlook Impacted by Critical Zero-Day Exploit
Microsoft updated a security advisory today to warn that a critical Outlook bug was exploited in attacks as a zero-day before being fixed during this month’s Patch Tuesday. […]
-
Microsoft Exchange Update Enabling Extended Protection by Default
Microsoft is automatically enabling Windows Extended Protection on Exchange servers after installing this month’s 2024 H1 Cumulative Update (aka CU14). […]