Heimdal – InfosecToday

Comprehensive Phishing Study Shows Who Is More Prone to Fall Victim to Phishing Attacks

Researchers from ETH Zurich conducted a study to investigate who is more prone to fall victim to phishing cyberattacks in a corporate context. The study involved 14,733 participants and was…

C2 cobalt strike Cybersecurity Cybersecurity News Emotet

Cobalt Strike Is Being Installed by Emotet for Faster Attacks

8 months ago

admin

Emotet belongs to the malware strain known as banking Trojans, and it primarily spreads through malspam. The messages used by Emotet often contain familiar branding, mimicking the email format of well-known…

Cybersecurity Cybersecurity Basics Educational resources

CEO Fraud Emails – Not Every Money Transfer Request You Receive Is Legit

8 months ago

admin

You know the saying If it’s too good to be true, then it probably is? The same could go with If it’s too pressing to be true, it probably is…

apache Cybersecurity Cybersecurity News Log4j Log4j Impacted Vendor Products log4j vulnerability Log4Shell

A List of Vulnerable Products to the Log4j Vulnerability

8 months ago

admin

Two days ago, we wrote a post about the Log4j vulnerability that is currently wreaking havoc on the cyberthreat landscape. The flaw stands for an open-source Java logging library. By…

Cybersecurity Patch Tuesday Updates

Patch Tuesday December 2021 – Microsoft Fixes 67 Flaws, Including 6 Zero-Day Vulnerabilities

8 months ago

admin

December’s Patch Tuesday comes with numerous security fixes and improvements, including two actively exploited zero-day vulnerabilities. The list features spoofing, denial of service, remote code execution, elevation of privilege, and…

Cybersecurity Cybersecurity News

IIS Extensible Web Server Used to Steal Microsoft Exchange Credentials

8 months ago

admin

Cybercriminals are installing a new malicious add-on for the IIS web server on Microsoft Exchange Outlook Web Access (OWA) servers to collect login information and remotely perform commands on the…

Cybersecurity Cybersecurity News log4j vulnerability RaaS Ransomware

New Ransomware Family Deployed in Log4Shell Attacks

8 months ago

admin

Recently a public exploit for the major zero-day vulnerability known as ‘Log4Shell’ in the Apache Log4j Java-based logging platform has been made available. Log4j is a development platform that enables…

Agent tesla Cybersecurity Cybersecurity News Malware spyware

Agent Tesla Spyware Used in Phishing Campaign

8 months ago

admin

Agent Tesla initially detected in late 2014, is a known spyware aimed at collecting sensitive data from a victim’s device, such as stored application credentials and keyboard inputs (keylogger). Agent…

Cybersecurity Cybersecurity News data exfiltration Data leakage karakurt

Karakurt: Another Threat Actor Group on the Cyberthreat Landscape

8 months ago

admin

Accenture’s team of researchers has identified a threat actor group dubbed Karakurt, as the group calls itself. The hacking gang was first discovered during the month of June this year.…

Cybersecurity Cybersecurity News

French Users and Orgs Targeted by TinyNuke Info-Stealing Malware

8 months ago

admin

According to security researchers, the TinyNuke banking malware (also known as Nukebot) has resurfaced in a new operation exclusively targeting French users and organizations with invoice-themed email lures. The targets…