13 matches found
EUVD-2020-9096
Malware in sbrugna...
EUVD-2016-4408
Malware in sbrugna...
EUVD-2015-1894
Malware in sbrugna...
EUVD-2020-8927
Malware in sbrugna...
Exploit for Improper Authentication in Microsoft
Exploit and detect tools for CVE-2020-0688Microsoft Exchange default MachineKeySection deserialize vulnerability build csc ExchangeCmd.cs csc ExchangeDetect.cs usage ExchangeDetect ExchangeCmd sub commands: exec args exec command arch get remote process architecturefor shellcode shellcode run...
U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems
The U.S. Department of Justice DoJ on Thursday announced charges against a 36-year-old Yemeni national for allegedly deploying the Black Kingdom ransomware against global targets, including businesses, schools, and hospitals in the United States. Rami Khaled Ahmed of Sana'a, Yemen, has been charg...
A week in security (February 12 – February 18)
Last week on Malwarebytes Labs: GoldPickaxe Trojan steals your face! Microsoft Exchange vulnerability actively exploited Massive utility scam campaign spreads via online ads Facebook Marketplace users’ stolen data offered for sale How ransomware changed in 2023 Malwarebytes crushes malware all th...
CVE-2022-21978
Microsoft Exchange Server Elevation of Privilege Vulnerability...
Black Kingdom ransomware
Black Kingdom ransomware appeared on the scene back in 2019, but we observed some activity again in 2021. The ransomware was used by an unknown adversary for exploiting a Microsoft Exchange vulnerability CVE-2021-27065. The complexity and sophistication of the Black Kingdom family cannot bear a...
CVE-2020-17143 Microsoft Exchange Server Information Disclosure Vulnerability
...
This Week in Security News: Hacker Strategies and Spyware Attacks
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about how hackers are improving their breach strategies. Also, learn about new spyware attacks via URLs, websites, and mobile apps. Re...
CVE-2018-0924
Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013 Cumulative Update 18, Microsoft Exchange Server 2013 Cumulative Update 19, Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server 2016 Cumulative Update 7, and Microsoft Exchange Serve...
MS03-046 Microsoft Exchange 2000 Heap Overflow
On October 15th, Microsoft released an advisory stating that both Exchange 5.5 and Exchange 2000 were vulnerable to a denial of service attack in the code which processes extended verb requests. This advisory also stated that Exchange 2000 was vulnerable to a buffer overrun that would allow a...