SEARCH
Archive
Spring Framework Flaw Exploited in Mirai Malware Attacks
The previously discovered RCE flaw in the Spring framework is being leveraged by attackers to deploy the Mirai botnet malware.
APT10 Espionage Attacks on U.S. Orgs Uncovered
A recent wide-ranging campaign shows how APT10 is broadening its victimology beyond Japanese organizations.
FIN7 Evolves With New Malware, Initial Access Tactics
The threat group has been using a new initial access vector and a novel malware family in the first stages of its attack.
IcedID Thread-Hijacking Attack Uses Compromised Exchange Servers
Attackers are using compromised Microsoft Exchange servers to launch thread-hijacking attacks that infect victims with the IcedID malware.
Google Details New ‘Exotic Lily’ Initial Access Group
A new initial access broker known as Exotic Lily has used exploits for zero days and sells network access to cybercrime teams such as FIN12 for ransomware deployment.