2024-04-26 16:38
Telegram users are currently experiencing issues worldwide, with users unable to use the website and mobile apps Read More
Blog Directory > Technology Blogs > NetmanageIT CTO Corner technology Blog >
Netmanageit Cto Corner Blog
blog.netmanageit.com
Tags:
telegram
county
security
fake job
kaiser
brokewell
transfer services
brocade sannav san
wpautomatic plugin
critical
Musings and Howto Articles from an MSP owner and IT industry veteran. Security news, useful free tools, articles on how to install awesome Open Source tools, expert industry commentary!
2024-04-26 14:20
A new campaign tracked as "Dev Popper" is targeting software developers with fake job interviews in an attempt to trick them into installing a Python remote access trojan (RAT) Read More
2024-04-26 14:03
Multiple critical vulnerabilities discovered in Brocade SANnav SAN management application, impacting all versions up to 2.3.0 Read More
2024-04-26 10:46
Unlock Endpoint Security with our top 10 must-know tips! From MFA to EDR, discover how to protect your digital kingdom Read More
2024-04-26 10:42
A new Android malware called Brokewell is disguising itself as updates for popular apps like Google Chrome and Klarna Read More
2024-04-26 10:18
A critical vulnerability (CVE-2024-3400) in PAN-OS could expose your systems to remote code execution attacks Read More
2024-04-26 09:34
Healthcare service provider Kaiser Permanente disclosed a data security incident that may impact 13.4 million people in the United States Read More
2024-04-26 05:49
A critical vulnerability (CVE-2024-27956) in the WP-Automatic plugin is being actively exploited. This flaw could allow attackers to take complete con Read More
2024-04-25 21:16
The FBI has warned today that using unlicensed cryptocurrency transfer services can result in financial loss if these platforms are taken down by law enforcement Read More
2024-04-25 19:55
The L.A. County's Department of Health Services, the second-largest public health care system in the United States, disclosed a data breach after patients' personal and health information wa… Read More
2024-04-25 19:20
Researchers have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses Read More
2024-04-25 17:26
Reddit is investigating a major outage blocking users worldwide from accessing the social network's websites and mobile apps Read More
2024-04-25 16:47
North Korean hackers used fake job offers to deliver a new Trojan called Kaolin RAT. It can change file timestamps and load malware Read More
2024-04-25 16:40
Over 1,400 CrushFTP servers exposed online were found vulnerable to attacks currently targeting a critical severity server-side template injection (SSTI) vulnerability previously… Read More
2024-04-25 14:27
Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for lo… Read More
2024-04-25 11:13
This article takes you through a real-life network attack simulation, covering 6 steps from Initial Access to Data Exfiltration Read More
2024-04-25 10:21
The U.S. DOJ has made a significant move by arresting the founders of Samourai, a crypto mixer, for laundering over $100M Read More
2024-04-25 10:00
Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed to text input and th… Read More
2024-04-25 06:37
Google hits the brakes on phasing out third-party cookies in Chrome until 2024 Read More
2024-04-25 05:50
A new stealthy malware campaign leveraging two zero-day flaws in Cisco networking gear has been uncovered, allowing covert data collection and reconna Read More
2024-04-24 20:55
Keonne Rodriguez and William Lonergan Hill have been charged by the U.S. Department of Justice for laundering more than $100 million from various criminal enterprises through Samourai, a cry… Read More
2024-04-24 20:08
Proof-of-concept exploit code has been released for a top-severity security vulnerability in Progress Flowmon, a tool for monitoring network performance and visibility Read More
2024-04-24 17:07
Cisco warned today that a state-backed hacking group has been exploiting two zero-day vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls… Read More
2024-04-24 15:44
Google is updating the client-side encryption mechanism for Google Meet to allow external participants, including those without Google accounts, to join encrypted calls Read More
2024-04-24 15:19
Microsoft has enabled Start menu ads in the optional KB5036980 preview cumulative update for Windows 11 22H2 and 23H2 Read More
2024-04-24 14:31
The Federal Trade Commission is sending $5.6 million in refunds to Ring users whose private video feeds were accessed without consent by Amazon employees and contractors, or had their accoun… Read More
2024-04-24 13:43
U.S. Treasury Department has sanctioned two Iranian firms and four individuals for their involvement in malicious cyber activities targeting U.S Read More
2024-04-24 13:36
A sophisticated attack campaign dubbed "FROZEN#SHADOW" is underway, using phishing emails to infect systems with the stealthy malware SSLoad Read More
2024-04-24 09:36
Major security flaws uncovered in popular Chinese keyboard apps! Researchers found vulnerabilities that could expose users' private keystrokes Read More
2024-04-24 07:02
A sophisticated malware called GuptiMiner has been leveraging a flaw in eScan antivirus updates to spread backdoors and crypto miners across corporate Read More
2024-04-24 04:50
A suspected Vietnamese hacking group is leveraging CDN cache to distribute malware undetected Read More
2024-04-23 21:50
Microsoft reversed the fix for an Outlook bug causing erroneous security warnings after installing December 2023 security updates Read More
2024-04-23 21:27
A threat actor has been using a content delivery network cache to store information-stealing malware in an ongoing campaign targeting systems U.S., the U.K., Germany, and Japan Read More
2024-04-23 19:50
Microsoft has released hotfix updates to address multiple known issues impacting Exchange servers after installing the March 2024 security updates Read More
2024-04-23 18:40
The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned four Iranian nationals for their involvement in cyberattacks against the U.S. government, defense contractors… Read More
2024-04-23 16:56
The National Police Agency in South Korea issued an urgent warning today about North Korean hacking groups targeting defense industry entities to steal valuable technology information Read More
2024-04-23 15:38
The Department of State has started imposing visa restrictions on mercenary spyware makers and peddlers, prohibiting their entry into the United States, as announced earlier in Februa… Read More
2024-04-23 14:56
North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner… Read More
2024-04-23 14:28
The UnitedHealth Group has confirmed that it paid a ransom to cybercriminals to protect sensitive data stolen during the Optum ransomware attack in late February Read More
2024-04-23 14:00
Researchers discovered a "dependency confusion" vulnerability in an archived Apache project, Cordova App Harness Read More
2024-04-23 11:28
Join industry experts Rhys Arkins and Jeffrey Martin for an exclusive webinar on combating supply chain threats Read More
2024-04-23 10:22
Businesses face massive disruptions from cyberattacks. From revenue losses to strained customer relations. Discover the hidden costs of cyber breaches Read More
2024-04-23 10:21
European police warn that default E2EE could severely hamper efforts to tackle online crimes like child abuse and terrorism Read More
2024-04-23 10:16
German authorities issued arrest warrants against three citizens on suspicion of spying for China Read More
2024-04-23 06:43
The U.S. is cracking down on individuals involved in the development and sale of commercial spyware Read More
2024-04-23 04:23
Hackers linked to Russia have been exploiting a Windows bug for YEARS to deploy GooseEgg malware for escalating attack access Read More
2024-04-22 17:22
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hac… Read More
2024-04-22 15:27
Synlab Italia has suspended all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline Read More
2024-04-22 15:11
Kaspersky has uncovered a concerning threat actor, ToddyCat, targeting government and military entities Read More
2024-04-22 15:05
BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft rep… Read More
2024-04-22 12:30
Russian hacker group Sandworm aimed to disrupt operations at around 20 critical infrastructure facilities in Ukraine, according to a report from the Ukrainian Computer Emergency Response Tea… Read More
2024-04-22 11:30
With enterprises using 53 different security solutions, why are breaches still a frequent reality? Unpack the paradox in our latest report Read More
2024-04-22 11:05
MITRE, a top cybersecurity firm, breached by a nation-state. Zero-days and session hijacking were the weapons Read More
2024-04-22 10:22
Major cybercrime groups are under attack by police. But are these takedowns effective? Some groups vanish, others bounce back in DAYS Read More
2024-04-22 09:22
Researchers detail a flaw in the Windows DOS-to-NT path conversion process which can be exploited by threat actors to gain rootkit like powers Read More
2024-04-22 07:12
North Korea's state-linked hackers are enhancing their operations with advanced artificial intelligence tools Read More
2024-04-21 18:49
You rarely root for a cybercriminal, but a new malware campaign targeting child exploiters doesn't make you feel bad for the victims Read More
2024-04-21 14:21
Ransomware actors have had a rough start this year, as stats from cybersecurity firm Coveware show that the trend of victims declining to pay the cybercriminals continues and has now reached… Read More
2024-04-21 08:42
A new variant of the RedLine Stealer malware has been discovered, utilizing Lua bytecode for stealth and effectiveness Read More
2024-04-20 15:19
The Forminator WordPress plugin used in over 500,000 sites is vulnerable to a flaw that allows malicious actors to perform unrestricted file uploads to the server Read More
2024-04-20 14:14
A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with a Microsoft repository, making the files appear trustwort… Read More
2024-04-20 05:53
A critical vulnerability (CVE-2024-3400) in Palo Alto Networks PAN-OS is being actively exploited by threat actors Read More
2024-04-20 05:18
If you use CrushFTP for file transfers, update to the latest version immediately Read More
2024-04-19 23:36
While ransomware attacks decreased after the LockBit and BlackCat disruptions, they have once again started to ramp up with other operations filling the void Read More
2024-04-19 22:33
CrushFTP warned customers today in a private memo of an actively exploited zero-day vulnerability fixed in new versions released today, urging them to patch their servers immediately Read More
2024-04-19 19:20
An operator of the HelloKitty ransomware operation announced they changed the name to 'HelloGookie,' releasing passwords for previously leaked CD Projekt source code, Cisco network &hell…Read More
2024-04-19 19:02
The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days Read More
2024-04-19 18:03
The United Nations Development Programme (UNDP) is investigating a cyberattack after threat actors breached its IT systems to steal human resources data Read More
2024-04-19 15:27
Approximately 22,500 exposed Palo Alto GlobalProtect firewall devices are likely vulnerable to the CVE-2024-3400 flaw, a critical command injection vulnerability that has been actively explo… Read More
2024-04-19 13:44
China-linked hacking group Earth Hundun is targeting Asia-Pacific tech, research, and government sectors with advanced malware, including "Waterbear" Read More
2024-04-19 11:08
How attackers are hacking organizations without touching the endpoint by targeting cloud identities Read More
2024-04-19 11:01
Akira Ransomware group has already extorted roughly $42 million from over 250 victims globally. They are now targeting both Windows and Linux systems Read More
2024-04-19 06:16
A new threat, 'DuneQuixote', targets Middle East governments with sophisticated evasion tactics Read More
2024-04-19 00:46
A new info-stealing malware linked to Redline poses as a game cheat called 'Cheat Lab,' promising downloaders a free copy if they convince their friends to install it too Read More
2024-04-18 21:02
American telecom provider Frontier Communications is restoring systems after a cybercrime group breached some of its IT systems in a recent cyberattack Read More
2024-04-18 18:29
The Hospital Simone Veil in Cannes (CHC-SV) has announced that it was targeted by a cyberattack on Tuesday morning, severely impacting its operations and forcing staff to go back t… Read More
2024-04-18 18:11
The Akira ransomware operation has breached the networks of over 250 organizations and raked in roughly $42 million in ransom payments Read More
2024-04-18 17:55
A legitimate-looking Google Search advertisement for the crypto trading platform 'Whales Market' redirects visitors to a wallet-draining phishing site that steals all of your assets Read More
2024-04-18 16:49
A preview of Microsoft Office LTSC 2024, a volume-licensed and perpetual version of Office for commercial customers, is now available for Windows and macOS users Read More
2024-04-18 14:56
LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft Read More
2024-04-18 14:25
Ukrainian government networks have been compromised by the OfflRouter malware since 2015. This malware is causing sensitive documents to be exposed Read More
2024-04-18 13:58
FIN7, a notorious cybercrime group, is targeting the U.S. automotive industry with spear-phishing attacks Read More
2024-04-18 11:17
Keep your organization out of the ransomware news headlines and your applications protected with this simple, effective solution from Zerto Read More
2024-04-18 10:31
Ever worried about malware in PDFs? ANY.RUN's sandbox can expose hidden threats just by analyzing the file's structure Read More
2024-04-18 10:31
New Android malware "SoumniBot" targets users in South Korea by exploiting unique evasion tactics. Find out how it slips through security cracks Read More
2024-04-18 10:28
An international law enforcement operation has busted LabHost, a notorious cybercrime service used for phishing attacks Read More
2024-04-18 09:52
The LabHost phishing-as-a-service (PhaaS) platform has been disrupted in a year-long global law enforcement operation that compromised the infrastructure and arrested 37 suspects, among… Read More
2024-04-18 05:54
Vulnerabilities in OpenMetadata are being exploited. These critical security flaws enable hackers to get into Kubernetes environments Read More
2024-04-18 04:48
Hackers are using fake domains of popular IP scanners like Advanced IP Scanner & ManageEngine in a Google Ads malvertising scheme to spread malware Read More
2024-04-17 21:38
A new Android banking malware named 'SoumniBot' is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure Read More
2024-04-17 21:01
In an ongoing Kubernetes cryptomining campaign, attackers target OpenMetadata workloads using critical remote code execution and authentication vulnerabilities Read More
2024-04-17 20:40
The financially motivated threat actor FIN7 targeted a large U.S. car maker with spear-phishing emails for employees in the IT department to infect systems with the Anunak backdoor Read More
2024-04-17 18:53
The U.S. Justice Department charged Moldovan national Alexander Lefterov, the owner and operator of a large-scale botnet that infected thousands of computers across the United States Read More
2024-04-17 17:25
Cisco has released patches for a high-severity Integrated Management Controller (IMC) vulnerability with public exploit code that can let local attackers escalate privileges to root Read More
2024-04-17 17:08
The Sandworm hacking group associated with Russian military intelligence has been hiding attacks and operations behind multiple online personas posing as hacktivist groups Read More
2024-04-17 14:02
Cybersecurity firms commonly sell "dark web monitoring" packages, with firms having slighly different features. Learn from Flare about the different dark web monitoring packages and the valu… Read More
2024-04-17 13:32
A new stealthy backdoor malware called Kapeka, likely created by Russia's APT group Sandworm, has been targeting Eastern Europe Read More
2024-04-17 13:03
At least six distinct botnet malware operations are hunting for TP-Link Archer AX21 (AX1800) routers vulnerable to a command injection security issue reported and addressed last year Read More
2024-04-17 12:16
Microsoft says the new Copilot app, mistakenly added to the list of installed Windows apps by recent Edge updates, doesn't collect or relay data to its servers Read More
2024-04-17 12:16
Microsoft says the new Copilot app, added by recent Edge updates to the list of installed Windows apps, doesn't collect or relay data to its servers Read More
Subscribe to Netmanageit Cto Corner
Get updates delivered right to your inbox!