New Supernova malware analysis reveals new APT cyberattack methods against vulnerable SolarWinds infrastructure

The Cybersecurity and Infrastructure Security Agency (CISA) has published a new analysis report on Supernova malware used in a cyberattack and long term compromise of an entity's network and SolarWinds systems.

Continue Reading New Supernova malware analysis reveals new APT cyberattack methods against vulnerable SolarWinds infrastructure

Chrome security update fixes zero-day (CVE-2021-21224) and 6 other vulnerabilities

Google has released Chrome 90 security update 90.0.4430.85 for Windows, Mac and Linux with a fix one vulnerability CVE-2021-21224 exploited in the wild and patches for six other vulnerabilities.

Continue Reading Chrome security update fixes zero-day (CVE-2021-21224) and 6 other vulnerabilities

FBI removes malicious web shells from hundreds of compromised Microsoft Exchange servers

The U.S. Department of Justice (DOJ) authorized the FBI to remove malicious web shells from hundreds of compromised and vulnerable Microsoft Exchange servers.

Continue Reading FBI removes malicious web shells from hundreds of compromised Microsoft Exchange servers