Morphisec is a world leader in preventing evasive polymorphic threats launched from zero-day exploits. On April 14 and 15, Morphisec identified exploitation attempts for a week-old VMware Workspace ONE Access…
Tag: Advanced Persistent Threat
Moving Target Defense Stops Ransomware and Other Advanced Threats
Today’s cyber security solutions aren’t countering threat actors’ advanced attacks. In the wake of the SolarWinds breach, even the largest companies and most-secure public agencies have had serious vulnerabilities exposed.…
‘Tropic Trooper’ Reemerges to Target Transportation Outfits
Analysts warn that the attack group, now known as ‘Earth Centaur,’ is honing its attacks to go after transportation and government agencies. They’ve been an active threat group since 2011,…
Suspected Iranian hackers target airline with new backdoor
A suspected, state-sponsored Iranian threat group has attacked an airline with a never-before-seen backdoor. On Wednesday, cybersecurity researchers from IBM Security X-Force said an Asian airline was the subject of…
Malicious Exchange Server Module Hoovers Up Outlook Credentials
“Owowa” stealthily lurks on IIS servers, waiting to harvest successful logins when an Outlook Web Access (OWA) authentication request is made. Researchers have uncovered a previously unknown malicious IIS module,…
StrongPity Malware Spread Using Malicious Notepad++ Installers
The Advanced Persistent Threat (APT) known as StrongPity is distributing malware-laced Notepad++ installers to infect their victims. #APT #StrongPity NotePad++ installer(npp.8.1.7.Installer.x64.exe)78556a2fc01c40f64f11c76ef26ec3ffhttp[:]//advancedtoenableplatform.com pic.twitter.com/eEXZWIObnH — blackorbird (@blackorbird) November 30, 2021 The method…
With 18,378 vulnerabilities reported in 2021, NIST records fifth straight year of record numbers
The National Institute of Standards and Technology (NIST) released a graph showing the number of vulnerabilities reported in 2021, finding 18,378 this year. The figure set a record for the…
New Ceeloader Malware Used By Russian-backed Advanced Persistent Threat (APT) Organization Nobelium
Nobelium is a Russian-backed advanced persistent threat (APT) organization that achieved attention towards the end of 2020 after breaching SolarWinds’ software development supply chain to obtain access to espionage targets,…
Threat Group Takes Aim Again at Cloud Platform Provider Zoho
Attackers that previously targeted the cloud platform provider have shifted their focus to additional products in the company’s portfolio. State-backed adversaries expanded attacks against cloud platform company Zoho and its…