Malware - Securezoo

PrestaShop websites vulnerable to major SQL Injection attacks

Cybersecurity Attacks, Malware, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / July 26, 2022 July 26, 2022 /

PrestaShop websites are reported vulnerable to a major SQL Injection vulnerability (tracked as CVE-2022-36408) and have been exploited in the wild since July 2022.

Tags: CVE-2022-36408, Cybersecurity Threat Center, MySQL, PrestaShop, SQL injection, SQLi

Cyber actors continue to exploit Log4Shell vulnerability (CVE-2021-44228) in VMware Horizon Systems (updated)

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / July 20, 2022 July 20, 2022 /

The Cybersecurity and Infrastructure Security Agency (CISA) warns cyber actors continue to exploit Log4Shell vulnerability (CVE-2021-44228) in VMware Horizon Systems.

Tags: APT, Aquatic Panda, CGCYBER, CISA, CVE-2021-44228, Cybersecurity Threat Center, Deep Panda, Log4j, log4Shell, UAG

H0lyGh0st ransomware actors target small and midsize businesses

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / July 17, 2022 July 17, 2022 /

Security researchers from Microsoft warn threat actors from North Korea are using H0lyGh0st ransomware to target small and midsize businesses around the globe.

Tags: Andariel, BLTC.exe, BTLC_C.exe, C2, Cybersecurity Threat Center, DarkSeoul, DEV-0530, H0lyGh0st, HolyGhost, HolyLock.exe, HolyRS.exe, Microsoft, MSTIC, North Korea, Plutonium, Ransomware, SiennaBlue, SiennaPurple, Small Business, SMB

OrBit: New evasive and persistent Linux malware

Malware, Vulnerabilities & Exploits / By Frank Crast / July 9, 2022 July 9, 2022 /

Researchers from Intezer have discovered a new evasive and persistent Linux malware dubbed OrBit.

Tags: Cybersecurity Threat Center, Linux, malware, OrBit, payload

ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks

Cybersecurity Attacks, Malware, Network Security / By Frank Crast / July 8, 2022 July 8, 2022 /

Threat actors are using a multi-stage malware dubbed ZuoRAT to exploit small office/home office (SOHO) routers and launch sophisticated attacks against North American and European networks.

Tags: ASUS, Black Lotus Labs, Cisco, CVE-2020-26878, CVE-2020-26879, Cybersecurity Attack, Cybersecurity Threat Center, DrayTek, Lumen, NETGEAR, Python, Small Office, SOHO, ZuoRAT

Maui ransomware targets entities in the Healthcare and Public Health sector

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 July 6, 2022 /

Cybersecurity experts warn North Korean State-Sponsored threat actors are using Maui ransomware to target entities in the Healthcare and Public Health (HPH) sector.

Tags: CISA, Cybersecurity Threat Center, FBI, Health, healthcare, HPH, Maui, Public Health, Treasury

MedusaLocker ransomware threat

Cybersecurity Attacks, Malware / By Frank Crast / July 6, 2022 July 6, 2022 /

Threat actors are exploiting primarily Remote Desktop Protocol (RDP) vulnerabilities on victim computers to deploy MedusaLocker ransomware.

Tags: MedusaLocker, Ransomware

Toll fraud Android malware is major threat to steal your money

Malware, Mobile Security / By Frank Crast / July 4, 2022 July 4, 2022 /

Researchers from Microsoft warn that toll fraud Android malware has been one of the most prevalent malware downloaded from the Google Play Store since 2017 and is a major threat to steal your money.

Tags: Android, Cybersecurity Threat Center, Google Play Store, malware, Microsoft, mobile, toll fraud

Symbiote: Linux malware ‘nearly impossible to detect’ threat

Cybersecurity Attacks, Malware / By Frank Crast / June 11, 2022 June 11, 2022 /

Researchers have discovered a new Linux malware dubbed Symbiote, a ‘nearly impossible to detect’ threat.

Tags: Blackberry, BPF, Cyberattack, Cybersecurity Threat Center, Linux, malware, Symbiote

XorDdos: DDoS malware targets Linux systems

Cybersecurity Attacks, Malware / By Frank Crast / May 21, 2022 May 21, 2022 /

Over the past six months, Microsoft has observed a spike in cyberactivity of 254% from XorDdos, a trojan targeting Linux-based cloud systems and Internet of Things (IoT) devices.

Tags: DDoS, Linux, malware, XORDDoS