Emotet malware campaign warning
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has warned of an ongoing and widespread phishing campaign designed to spread Emotet malware throughout Australia.
Drupalgeddon2 attack campaign
Cyber attackers are exploiting an older Drupal remote code execution vulnerability CVE-2018-7600 dubbed Drupalgeddon2.
Phosphorus threat group targets email accounts
Microsoft has warned a cyber threat group dubbed Phosphorus has recently targeted email accounts belonging to Microsoft customers.
APT attackers exploit multiple VPN software vulnerabilities
Security experts are again warning that advanced persistent threat (APT) actors are exploiting vulnerabilities in multiple Virtual Private Network (VPN) applications.
Cisco Webex and Zoom issue password security guidance to prevent enumeration attacks
Researchers have discovered attackers can take advantage of Webex Meetings API calls to enumerate Webex meeting numbers. Attackers can also launch similar "enumeration attacks" against Zoom platform for ongoing or future meetings .
Tortoiseshell targets US veterans with fake website used to download malware
A cyber attack group dubbed "Tortoiseshell" has deployed a fake website posing as a site to help U.S. military veterans find jobs. The website is then used to download malware to visitors' systems.
TFlower ransomware targets companies via exposed RDS
A new ransomware dubbed TFlower has been targeting corporate environments via exposed remote desktop services (RDS).
23 Texas towns hit in coordinated ransomware attack
The Texas Department of Information Resources (DIR) has confirmed late Friday that 23 towns across Texas were victims of a coordinated ransomware attack.
Louisiana declares state of emergency after ransomware attack
Governor Edwards of Louisiana has declared a state of emergency after three of its school districts were hit with ransomware attacks.
New DNS hijacking campaign
UK's National Cyber Security Centre (NCSC) is warning of an ongoing DNS hijacking campaign.