A New PowerShell Backdoor Is Being Used in Log4j Attacks

At the end of 2021 proof-of-concept exploits for a significant zero-day vulnerability discovered in the widely used Apache Log4j Java-based logging library were distributed online, exposing both home users and businesses…

Microsoft Exchange and Fortinet Vulnerabilities Exploited by Iranian APT

An APT assault generally involves a group of highly competent hackers with very specific targets and a “slow and steady” approach to planning and executing their crimes.As Elena mentioned, APT…

Exchange, Fortinet Flaws Being Exploited by Iranian APT, CISA Warns

Meanwhile, a Microsoft analysis that followed six Iranian threat actor groups for over a year found them increasingly sophisticated, adapting and thriving. A state-backed Iranian threat actor has been using…

Iranian government-backed hackers target critical infrastructure with ransomware, US says

Written by Tim Starks Nov 17, 2021 | CYBERSCOOP U.S., U.K. and Australian cyber agencies on Wednesday accused Iranian government-sponsored hacking groups of exploiting Microsoft and Fortinet vulnerabilities this year…