Categories
Breach CVE Cyber Security Malware Phishing Vulnerability

Zoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more

Major cybersecurity events on 1st April 2020: Two Zoom zero-day vulnerabilities could allow root privileges to attackers. Windows vulnerability, SMBGhost, exploited for local privilege escalation. Wiper malware dubbed “Coronavirus” render disks unusable. Phishing emails lure victims with financial relief for Coronavirus.Continue readingZoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more

Categories
Breach CVE Malware Trojan Vulnerability

Canon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Categories
Breach CVE Malware MiTM Phishing Ransomware Stalkerware Vulnerability

COVID-19 malware and phishing scams, fake Google domains, and more

Major cyber security incidents on 17th March 2020: Scammers use COVID-19 as a guise to spread malware and phishing mails. APT36 calls coronavirus a ‘golden opportunity’ to distribute Crimson RAT. MacOS bundleware installer capable of much more than a normal installation software.Continue readingCOVID-19 malware and phishing scams, fake Google domains, and more

Categories
CVE Cyber Security Emotet Malware Ransomware

CloudSEK Daily Threat Bulletin – 25th February 2020

Round Up of Major Breaches and Scams Threat group steals data by bypassing server firewall and masking C2 traffic What appears to be a state-sponsored threat group is using a technique called “Cloud Snooper” to bypass a server’s firewall to communicate with command and control (C2). The attackers deployed a rootkit that then installs a…Continue readingCloudSEK Daily Threat Bulletin – 25th February 2020

Categories
CVE Emotet

CloudSEK Daily Threat Bulletin – 12th February 2020

Just 3 weeks before the legislative election, it has been found that Israel’s ruling party has inadvertently exposed all 6.5 million eligible voters’ personal information. And despite the growing sophistication of cyber-attacks, simple but severe Business Email Compromise attacks, are the leading cause for cybercrime losses. Phishing efforts continue to get more convincing, with a…Continue readingCloudSEK Daily Threat Bulletin – 12th February 2020