Lucene search
+L

45 matches found

Trend Micro Simply Security
Trend Micro Simply Security
added 2020/08/21 12:49 p.m.24 views

This Week in Security News: Trend Micro’s Zero Day Initiative Celebrates 15 Years and 24 Million Customers Affected after Experian Data Breach

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, read how the Zero Day Initiative ZDI has awarded more than $25 million in bounty rewards to security researchers over the past decade and a...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2020/03/18 3:52 p.m.57 views

How CISOs Should Prepare for Coronavirus Related Cybersecurity Threats

The Coronavirus is hitting hard on the world's economy, creating a high volume of uncertainty within organizations. Cybersecurity firm Cynet today revealed new data, showing that the Coronavirus now has a significant impact on information security and that the crisis is actively exploited by thre...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2020/03/18 1:0 p.m.24 views

The Coronavirus is Already Taking Effect on Cyber Security– This is How CISOs Should Prepare

The Coronavirus is hitting hard on the world’s economy, creating a high volume of uncertainty within organizations. Cynet has revealed new data, showing that the Coronavirus now has a significant impact on information security and that the crisis is actively exploited by threat actors. In light o...

Exploits0References8
ThreatPost
ThreatPost
added 2019/10/11 12:37 p.m.156 views

Iran-Linked 'Charming Kitten' Touts New Spearphishing Tactics

An Iran-linked advanced persistent threat APT group tied to attacks on President Trump’s 2020 re-election campaign has added new spearphishing techniques to its arsenal in an apparent ramp-up in operations. Charming Kitten—which goes by a number of names, including APT35, Ajax Security Team,...

0.4AI score
Exploits0References7
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/09/13 1:18 p.m.107 views

This Week in Security News: IoT Devices Are a Target in Cybercriminal Underground

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn how fileless malware abuses PowerShell. Also, read how Trend Micro researchers are pulling back the curtain on the cybercriminal...

7.6CVSS8.5AI score0.12942EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.3 views

PT-2019-3009 · Microsoft · Outlook

Name of the Vulnerable Software and Affected Versions: Microsoft Outlook affected versions not specified Description: A remote code execution issue exists due to improper handling of objects in memory. An attacker could exploit this by using a specially crafted file, allowing them to perform...

9.3CVSS7.5AI score0.04646EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2019/06/17 5:28 p.m.143 views

A Spate of University Breaches Highlight Email Threats in Higher Ed

Oregon State University announced Friday that hackers potentially made off with 636 student records and family records of students containing personally identifiable information PII, after a successful email attack in early May. This comes on the heels of email-based breaches at Graceland...

0.6AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/06/10 4:10 p.m.252 views

Microsoft Warns of Email Attacks Executing Code Using an Old Bug

Microsoft is warning of a fresh email campaign that distributes malicious RTF files boobytrapped with an exploit dating back to a 2017 vulnerability, CVE-2017-11882. The exploit allows attackers to automatically run malicious code without requiring user interaction. “The CVE-2017-11882...

9.3CVSS0.4AI score0.99945EPSS
Exploits33References7
ThreatPost
ThreatPost
added 2018/09/11 10:17 p.m.13 views

Threatlist: Email Attacks Surge, Targeting Execs

There was a 36 percent increase in email attacks against businesses between the first and second quarters of 2018, with retail, healthcare and government experiencing the most business email compromise BEC attempts, according to a new report. Several trends emerged in the analysis period, includi...

1.5AI score
Exploits0References6
Talos Blog
Talos Blog
added 2018/07/31 9:38 a.m.1162 views

Multiple Cobalt Personality Disorder

Introduction Despite the notion that modern cybersecurity protocols have stopped email-based attacks, email continues to be one of the primary attack vectors for malicious actors — both for widespread and targeted operations. Recently, Cisco Talos has observed numerous email-based attacks that ar...

9.3CVSS0.99945EPSS
Exploits79
ThreatPost
ThreatPost
added 2018/06/08 8:31 p.m.18 views

Creative Spam Thinks Outside the Macro with .IQY Attachments

The Necurs botnet is driving a fresh spam campaign that uses Excel Web Query .IQY file attachments to skim under the antivirus radar. If successful, the attack ultimately delivers the remote access trojan RAT known as FlawedAmmyy. This is the third wave in an offensive that started in late May. T...

0.4AI score
Exploits0References8
Microsoft Secure
Microsoft Secure
added 2018/05/10 4:0 p.m.72 views

Enhancing Office 365 Advanced Threat Protection with detonation-based heuristics and machine learning

Email, coupled with reliable social engineering techniques, continues to be one of the primary entry points for credential phishing, targeted attacks, and commodity malware like ransomware and, increasingly in the last few months, cryptocurrency miners. Office 365 Advanced Threat Protection ATP...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2018/04/26 7:33 p.m.59 views

Rubella Crimeware Kit: Cheap, Easy and Gaining Traction

A crimeware kit dubbed the Rubella Macro Builder is betting on a “dirty deeds done dirt cheap” approach to gain popularity in the criminal underground. The kit does two things: with a point-and-click builder functionality, it generates an initial malware payload for social-engineering spam...

9.3CVSS0.6AI score0.99945EPSS
Exploits33References3
Akamai Blog
Akamai Blog
added 2017/07/26 12:0 p.m.67 views

Part 1: Reading SPAM for Research

I recently wrote an article for Information Security Magazine where I explained how internet security researchers could use their spam folders as a resource tool. It got me thinking about going into greater detail on what I've found in my inbox. Phishing Sites I noticed an increase in "free gift...

6.4AI score
Exploits0
MSRC
MSRC
added 2013/11/05 8:0 a.m.39 views

CVE-2013-3906: a graphics vulnerability exploited through Word documents

Recently we become aware of a vulnerability of a Microsoft graphics component that is actively exploited in targeted attacks using crafted Word documents sent by email. Today we are releasing Security Advisory 2896666 which includes a proactive Fix it workaround for blocking this attack while we...

7.8CVSS6.8AI score0.84971EPSS
Exploits7
The Hacker News
The Hacker News
added 2013/03/12 9:26 a.m.5 views

Cyber security scenario according to WebSense

It's time of stocktaking, principal security firm are proposing their analysis to synthesize actual situation on cyber security, 2012 is widely considered a year when the malware has increased significantly thanks to the contributions of various actors that we will analyze shortly. WebSense has...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2012/05/24 6:33 p.m.15 views

E-mail Trends Show Hackers Working Weekends Less and Less

While there are an increasing number of weekends catered to hacking, even hackers need a day off – and it shouldn’t surprise many that increasingly, that day is usually Sunday. Network security company FireEye reviewed statistics on email-based attacks for 2012 that suggest that Sunday has slowed...

0.6AI score
Exploits0References2
The Coalfire Blog
The Coalfire Blog
added 2011/09/01 4:11 p.m.19 views

Phishing Season: Spam on the rise

Within the past two weeks there have been several reports on the increase in email spam, which can be directly correlated to an increase in phishing schemes and malware attacks. These attacks are frequently being delivered under the guise of legitimate business: they come in the form of shipment...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2011/02/06 8:12 p.m.6 views

UK foreign secretary : "We are under Cyber attack" !

Yesterday, the UK adopted secretary, William Hague, explained to a aegis appointment in Munich how cyber abyss were aggravating to access the UK government and aegis contractors. According to a BBC report, Mr. Hague explained that attackers had adulterated government computers with the Zeus troja...

6.7AI score
Exploits0
exploitpack
exploitpack
added 2004/08/21 12:0 a.m.14 views

Mantis Bug Tracker 0.x - New Account Signup Mass Emailing

Mantis Bug Tracker 0.x - New Account Signup Mass Emailing source: https://www.securityfocus.com/bid/10995/info Mantis is reportedly susceptible to a vulnerability in its signup process allowing mass email attacks. When a new user signs up to Mantis, the system automatically sends an email message...

7.4AI score
Exploits0
Rows per page
Query Builder