Exploits

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware – Go Health Pro

by
VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware – Go Health Pro

Nov 06, 2024Ravie LakshmananSaaS Security / Threat Detection An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus operandi. “Leveraging Microsoft SaaS services — including Teams, SharePoint, Quick Assist, and OneDrive — the attacker exploited the trusted … Read more

Adload malware exploits flaw to bypass macOS protections for Safari – Go Health Pro

by
Adload malware exploits flaw to bypass macOS protections for Safari – Go Health Pro

Microsoft Threat Intelligence on Oct. 17 warned security teams that Microsoft Defender for Endpoint detected that Adload malware exploited a previously patched macOS vulnerability. Referred to as the HM Surf vulnerability, the flaw — CVE-2024-44133 — lets attackers bypass the transparency, consent, and control (TCC) protections for the Safari browser directory, giving attackers unlimited access … Read more

New Linux Malware Marketing campaign Exploits Oracle Weblogic to Mine Cryptocurrency – Go Well being Professional

by
New Linux Malware Marketing campaign Exploits Oracle Weblogic to Mine Cryptocurrency – Go Well being Professional

Sep 13, 2024Ravie LakshmananEnterprise Safety / Vulnerability Cybersecurity researchers have uncovered a brand new malware marketing campaign concentrating on Linux environments to conduct illicit cryptocurrency mining. The exercise, which particularly singles out the Oracle Weblogic server, is designed to ship malware dubbed Hadooken, in response to cloud safety agency Aqua. “When Hadooken is executed, it … Read more

Hacktivists Exploits WinRAR Vulnerability in Assaults In opposition to Russia and Belarus – Go Well being Professional

by
Hacktivists Exploits WinRAR Vulnerability in Assaults In opposition to Russia and Belarus – Go Well being Professional

Sep 03, 2024Ravie LakshmananRansomware / Malware A hacktivist group generally known as Head Mare has been linked to cyber assaults that solely goal organizations positioned in Russia and Belarus. “Head Mare makes use of extra up-to-date strategies for acquiring preliminary entry,” Kaspersky stated in a Monday evaluation of the group’s techniques and instruments. “As an … Read more

Business spyware and adware distributors, state-sponsored hackers share exploits – Go Well being Professional

by
Business spyware and adware distributors, state-sponsored hackers share exploits – Go Well being Professional

State-sponsored hacking teams and business spyware and adware distributors seem like sharing exploits with each other, in keeping with researchers with the Google safety group. Google’s Menace Evaluation Workforce report it just lately noticed an operation through which plenty of Mongolian authorities organizations have been focused by a Russian state-sponsored APT with a suspiciously acquainted … Read more

x