Title: North Korean Hackers Target European Orgs With Updated Malware Date Published: November 15, 2022 https://www.bleepingcomputer.com/news/security/north-korean-hackers-target-european-orgs-with-updated-malware/ Excerpt: “North Korean hackers are using a new...
Learning & Resource Center
Articles
Most Popular Posts
November 15, 2022
Title: China-Based Campaign Uses 42,000 Phishing Domains Date Published: November 15, 2022 https://www.infosecurity-magazine.com/news/chinabased-campaign-42000-phishing/ Excerpt: “Security researchers have uncovered a sophisticated phishing campaign using tens of...
Mozilla Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Mozilla Firefox ESR is a version of the web...
November 14, 2022
Title: Kmsdbot, a New Evasive Bot for Cryptomining Activity and Ddos Attacks Date Published: November 14, 2022 https://securityaffairs.co/wordpress/138514/malware/kmsdbot-golang-malware.html Excerpt: “Researchers spotted a new evasive malware, tracked as KmsdBot, that...
November 10, 2022
Title: New Strelastealer Malware Steals Your Outlook, Thunderbird Accounts Date Published: November 10, 2022 https://www.bleepingcomputer.com/news/security/new-strelastealer-malware-steals-your-outlook-thunderbird-accounts/ Excerpt: “A new information-stealing malware...
Apple Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Apple Products, the most severe of which could allow for arbitrary code execution. macOS Ventura is the 19th and current major release of macOS iOS is a mobile operating system for mobile devices, including the iPhone,...
Citrix ADC and Gateway Could Allow for Authentication Bypass
Multiple vulnerabilities have been discovered in Citrix ADC and Gateway, the most severe of which could allow for Authentication Bypass. Citrix ADC and Gateway is an Application Delivery Controller and a gateway service to products respectively. Successful...
November 9, 2022
Title: Microsoft Patch Tuesday Fixes 11 Critical Security Vulnerabilities and Six Zero-Days Being Actively Exploited Date Published: November 9, 2022...
VMware Workspace ONE Assist Could Allow for Privilege Escalation
Multiple vulnerabilities have been discovered in VMware Workspace ONE Assist, the most severe of which could allow for privilege escalation. VMware Workspace ONE Assist is a remote access tool used to remotely access and troubleshoot VMware devices. Successful...
Articles
Advisories
Citrix ADC and Gateway Could Allow for Authentication Bypass
Multiple vulnerabilities have been discovered in Citrix ADC and Gateway, the most severe of which could allow for Authentication Bypass. Citrix ADC and Gateway is an Application Delivery Controller and a gateway service to products respectively. Successful...
VMware Workspace ONE Assist Could Allow for Privilege Escalation
Multiple vulnerabilities have been discovered in VMware Workspace ONE Assist, the most severe of which could allow for privilege escalation. VMware Workspace ONE Assist is a remote access tool used to remotely access and troubleshoot VMware devices. Successful...
Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could...
Articles
Research & Situational Awareness
Maui Ransomware – Technical Details
Since May 2021, the FBI has observed and responded to multiple Maui ransomware incidents at Healthcare and Public Health (HPH) Sector organizations. North Korean state-sponsored cyber actors used Maui ransomware in these incidents to encrypt servers responsible for...
Promises High-Dollar Commissions on Medical Equipment Purchases
The FBI Minneapolis Field Office, in coordination with the Internet Crime Complaint Center and the Office of Private Sector (OPS), warn of an attorney trust account scam involving acquisition of medical equipment. The scam has resulted in approximately $2 million in...
MedusaLocker Ransomware Technical Details
Observed as recently as May 2022, MedusaLocker actors predominantly rely on vulnerabilities in Remote Desktop Protocol (RDP) to access victims’ networks. The MedusaLocker actors encrypt the victim’s data and leave a ransom note with communication instructions in every...
Articles
Company News
Beers & Bytes Recognized as a Top Industry Podcast
Beers & Bytes was recently named the Gold Winner for Best Cybersecurity Podcast among North American-based companies with between 10 and 49 employees. The honor was conveyed by the highly-coveted Cybersecurity Excellence Awards program. The recognition comes as...
Fortify 24×7 Named To MSSP Top 250 MSSPs List For 2020
Fourth-Annual List Honors Leading MSSP, MDR, and SOCaaS Cybersecurity Companies Worldwide September 28, 2020, Point Roberts, WA: MSSP Alert, published by After Nines Inc., has named Fortify 24x7 to the Top 250 MSSPs list for 2020 (https://www.msspalert.com/top250)....
Fortify 24×7 Named To ChannelE2E Top 100 Vertical Market MSPs
May 5, 2020, Point Roberts, WA: Fortify 24x7 has been named to After Nines Inc.’s ChannelE2E Top 100 Vertical Market MSPs list and research (https://www.channelE2E.com/top100) for 2020. The annual list and research identify and honor the top 100 managed services...