Latest articles by Rene Millman
BazarLoader malware abuses Windows 10 apps in 'Call Me Back' attack
News The highly targeted phishing campaign abuses appxbundle to infect devices
Millions of routers and NAS devices vulnerable to BotenaGo malware
News The malware takes advantage of 33 different exploits to attack routers and IoT devices
Big zero-day flaw found in Palo Alto security appliance
News Vulnerability in GlobalProtect VPN could enable hackers to take control of the security system
83% of critical infrastructure companies have experienced breaches in the last three years
News Survey finds security practices are weak if not non-existent in critical firms
Nitro acquires European e-sign SaaS provider Connective
News The deal should propel Nitro into the top three enterprise e-signing providers worldwide
Iranian hackers targeting telcos and ISPs using upgraded malware
News New report shines a light on Lyceum cyberespionage group
Chinese hackers target ManageEngine password manager
News Around nine organizations in the technology, defense, health care, energy, and education industries hit in new campaign
Sitecore XP RCE flaw is being actively exploited, ACSC warns
News The vulnerability was fixed last month but hackers are now moving against patching laggards
US Treasury sanctions crypto exchange Chatex over ransomware ties
News The move comes after the US government sanctioned the Suex exchange in September
What is Maze ransomware?
In-depth This Windows ransomware has targeted many organisations worldwide
Proofpoint impersonator steal Microsoft, Google logins in phishing campaign
News Clever hackers dodged Microsoft security by pretending to be a cyber security firm
Critical vulnerabilities in Philips EMR system could risk patient data
News CISA has warned that hackers could extract info from medical databases or mount DoS attacks
US sanctions Israeli NSO Group for selling spyware
News COSEINC and Positive Technologies were also blocked by the government
Vulnerability in Linux kernel could let hackers remotely take over systems
News Heap overflow attacks can exploit TIPC module in all common Linux distributions
Magecart card skimmer avoids detection by evading virtual machines
News Browser script detects VMs used by researchers
Fake Steam phishing baits victims with free Discord Nitro
News Victims end up on a fake page where their credentials are stolen
Mekotio trojan continues to spread despite its operators’ arrests
News Hackers have used it in 100 more attacks since arrests
161% surge in mobile phishing pushes energy industry to its limits
News Following Colonial Pipeline, crooks get a taste for energy companies
Mitre reveals ten worst hardware security weaknesses in 2021
News The list aims to highlight common hardware flaws to help eliminate them from product development cycles
Red Hat launches Enterprise Linux 9 beta
News Changes will require less work from admins and IT Ops
Office 365 phishing campaign used stolen Kaspersky Amazon SES token to fool victims
News Credentials stolen from users after legitimate-looking email arrives in inboxes
“Trojan Source” hides flaws in source code from humans
News Organizations urged to take action to combat the new threat that could result in SolarWinds-style attacks
Hackers could use new Wslink malware in highly targeted cyber attacks
News Malware acts as a server, but its origins baffle boffins
