Remote Memory Corruption Bug Found in OpenSSL 3.0.4
A remotely exploitable memory corruption bug has been identified in OpenSSL 3.0.4 on x64 systems with the AVX512 instruction set.
SEARCH
Emotet Office Macros Abuse Continues Despite Microsoft Protections
Researchers found hundreds of malicious Office documents being used to download Emotet in June.
Decipher Podcast: John Hultquist
John Hultquist, VP of Mandiant Intelligence, talks about new Mandiant research that exposes a Chinese information operation...
The Cat and Mouse Game of Crypto Money Laundering
Ransomware actors are getting better at laundering their proceeds from attacks - but law enforcement authorities are also...
APT Groups Still Exploiting Log4Shell in VMware Products
APT teams are still exploiting the Log4Shell flaw in VMware Horizon and Unified Access Gateway, six months after the initial...
BEC Actors Diverge From Traditional Attacks
Business email compromise (BEC) groups are more heavily relying on attacks that impersonate third-party vendors or suppliers,...
AstraLocker Ransomware Spread in ‘Smash and Grab’ Attacks
A new variant of the AstraLocker found being deployed directly in Microsoft Office attachments reflects a focus by attackers on...
New Malware Framework Distributed Via Pay-Per-Install Service
The malware framework contains a loader, dropper and a remote access trojan with its own network communication protocol.
Trio of Serious Bugs Fixed in SonicWall SSL VPNs
Three serious flaws, including an authentication bypass, a shared hard-coded encryption key, and an open redirect, have been...
Dennis Has Some Questions About…2FA
Two-factor authentication is a vital part of many corporate security strategies, and is now offered by lots of consumer apps,...