FBI removes malicious web shells from hundreds of compromised Microsoft Exchange servers
The U.S. Department of Justice (DOJ) authorized the FBI to remove malicious web shells from hundreds of compromised and vulnerable Microsoft Exchange servers.
XCSSET malware now targets Apple’s macOS 11 and M1-based Macs
Security researchers have revealed new research regarding XCSSET that now targets Apple's macOS 11 and M1-based Macs. XCSSET had historically targeted Xcode projects to deliver malicious payloads.
CISA publishes reports on DearCry ransomware and China Chopper Web Shell malware linked to Exchange Server exploits (update-2)
The Cybersecurity and Infrastructure Security Agency (CISA) has published reports on DearCry ransomware and China Chopper Web Shell malware linked to recent Exchange Server exploits. Attackers can use this malware to further compromise on-premise Microsoft Exchange servers and launch other attacks.
Threat actors target vulnerable critical SAP applications
Security experts from Onapsis and SAP have released a new threat intel report for SAP customers that warns of cyber threat actors targeting unprotected SAP applications.
Personal data on 533 million Facebook users posted online
A hacker has leaked personal data on an estimated 533 million Facebook users, to include phone numbers and Facebook account details. The data was leaked on a publicly accessible hacking forum.
Microsoft: New analysis of Exchange Server vulnerabilities and cyberattacks
Microsoft has published new detailed analysis of Exchange Server vulnerabilities, cybercriminal groups and post-compromise second stage attack malware. In addition, the tech giant offered sound mitigation guidance.
Active exploits target WordPress sites running vulnerable Thrive Themes
Cybersecurity experts discovered active exploits against vulnerable WordPress sites running previously patched Thrive Themes and plugins.
Energy giant Shell latest victim in Accellion FTA cyberattacks
Energy giant Shell was the latest victim in a series of cyberattacks on customers of Accellion's legacy File Transfer Appliance (FTA) product used to transfer large files.
Critical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack
Security researchers are warning of mass scans and active exploits of a Critical vulnerability on F5 BIG-IP and BIG-IQ infrastructure. F5 patched the Critical remote code execution vulnerability CVE-2021-22986 nearly two weeks ago when the networking company confirmed an unauthenticated attacker could exploit the vulnerability.
FBI warns of PYSA Ransomware attacks against schools in the U.S. and U.K.
The Federal Bureau of Investigation (FBI) has warned of PYSA Ransomware attacks against schools located in the United States and United Kingdom.