Skip to content
Securezoo Blog
  • Home
  • Threat Center Blog
    • Application Security
    • Cloud Security
    • Cryptography
    • Cybersecurity Articles
    • Cybersecurity Attacks
    • Identity & Access Management
    • Insider Threats
    • Internet of Things (IoT)
    • MalwareCyber security malware threats.
    • Network Security
    • Password Management
    • Regulations & Laws
    • Security Updates & Patches
    • Third-Party Security
    • Vulnerabilities & Exploits
    • Zero-days
  • Resources
  • Security Guidelines
    • CIS
    • PCI
    • NIST
      • NIST – Cryptography
      • NIST – Identity & Access Management
      • NIST – Messaging Security
      • NIST – Standards & Frameworks
      • NIST – Storage Security
      • NIST – Third Party Security
    • Other
  • Services
    • Security Assessment
  • About Us
  • Contact Us
  • Privacy Policy
Menu Close
  • Home
  • Threat Center Blog
    • Application Security
    • Cloud Security
    • Cryptography
    • Cybersecurity Articles
    • Cybersecurity Attacks
    • Identity & Access Management
    • Insider Threats
    • Internet of Things (IoT)
    • Malware
    • Network Security
    • Password Management
    • Regulations & Laws
    • Security Updates & Patches
    • Third-Party Security
    • Vulnerabilities & Exploits
    • Zero-days
  • Resources
  • Security Guidelines
    • CIS
    • PCI
    • NIST
      • NIST – Cryptography
      • NIST – Identity & Access Management
      • NIST – Messaging Security
      • NIST – Standards & Frameworks
      • NIST – Storage Security
      • NIST – Third Party Security
    • Other
  • Services
    • Security Assessment
  • About Us
  • Contact Us
  • Privacy Policy

FontOnLake malware targets Linux systems

  • Post published:October 11, 2021
  • Post category:Cybersecurity Attacks/Malware

A previously unknown malware family dubbed FontOnLake is targeting Linux systems. The malware is made up of “custom and well-designed modules.”

Continue ReadingFontOnLake malware targets Linux systems

Sidewalk backdoor linked to Grayfly espionage group

  • Post published:September 13, 2021
  • Post category:Cybercrime/Cybersecurity Attacks/Malware/Vulnerabilities & Exploits

Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.

Continue ReadingSidewalk backdoor linked to Grayfly espionage group

Justice Department seizes domains used in Nobelium spear-phishing attacks

  • Post published:June 2, 2021
  • Post category:Cybersecurity Attacks/Messaging Security/Phishing

The U.S. Justice Department has announced the seizure of domains used in Nobelium spear-phishing attacks previously identified by Microsoft last week.

Continue ReadingJustice Department seizes domains used in Nobelium spear-phishing attacks

New macOS malware linked to OceanLotus group

  • Post published:December 1, 2020
  • Post category:Cybersecurity Attacks/Malware

Security researchers have discovered a new macOS backdoor linked to the OceanLotus hacking group. The new malware variant has added new features such as new behavior and domain names.

Continue ReadingNew macOS malware linked to OceanLotus group

SlothfulMedia: new malware variant used by “sophisticated actors”

  • Post published:October 2, 2020
  • Post category:Malware

Security experts warned of a new malware variant dubbed SlothfulMedia has been used by a "sophisticated cyber actor."

Continue ReadingSlothfulMedia: new malware variant used by “sophisticated actors”

GADOLINIUM threat actors use cloud services and open source tools in cyberattacks

  • Post published:October 2, 2020
  • Post category:Cloud Security/Cybersecurity Articles/Cybersecurity Attacks/Malware

Security experts from Microsoft have observed a cyber threat actor dubbed GADOLINIUM that uses new attack techniques via cloud services and open source tools.

Continue ReadingGADOLINIUM threat actors use cloud services and open source tools in cyberattacks

NSA and FBI: watch out for Russian malware Drovorub

  • Post published:August 14, 2020
  • Post category:Cybersecurity Attacks

The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have released a joint cybersecurity alert for a new Russian malware dubbed Drovorub.

Continue ReadingNSA and FBI: watch out for Russian malware Drovorub

Doki malware targets exposed Docker servers in the cloud

  • Post published:July 29, 2020
  • Post category:Cloud Security/Configuration Management/Cybersecurity Attacks

Security researchers at Intezer Labs detected a new Linux malware dubbed "Doki" and cyber attack that uses blockchain wallet for generating command and control (C2) domain names.

Continue ReadingDoki malware targets exposed Docker servers in the cloud

CStealer: a new Windows trojan password stealer

  • Post published:November 30, 2019
  • Post category:Malware/Password Management

A new Windows trojan dubbed CStealer attempts to steal passwords from Chrome browser. The malware also uses a remote MongoDB server to store the stolen passwords.

Continue ReadingCStealer: a new Windows trojan password stealer

Watchbog targets unpatched systems

  • Post published:September 13, 2019
  • Post category:Malware/Vulnerabilities & Exploits

Security experts have uncovered an incident that involved the Watchbog cryptomining botnet. Attackers exploited CVE-2018-1000861 to establish a foothold on the victim's network and install Watchbog malware on unpatched systems.

Continue ReadingWatchbog targets unpatched systems
  • 1
  • 2
  • Go to the next page

Categories

Archives

RSS Securezoo Blog Posts

  • BlackMatter ransomware has targeted multiple U.S. critical infrastructure entities October 24, 2021
  • Cisco SD-WAN command injection vulnerability could lead to code execution as root October 23, 2021
  • Oracle Critical Patch Update for October 2021 October 22, 2021
  • Google releases Chrome 95 security update (95.0.4638.54) with fixes for 5 High risk vulnerabilities October 21, 2021
  • Acer systems hit with second cyberattack in the past week October 18, 2021
  • Apache patches Tomcat DoS vulnerability (CVE-2021-42340) October 18, 2021
  • Juniper patches multiple vulnerabilities in Junos OS and other products (October 2021) October 15, 2021
  • Adobe security update for Acrobat and Reader (APSB21-104) and other products (updated) October 15, 2021
  • Microsoft October 2021 Security Updates includes fixes for 4 zero-days, 1 actively exploited October 13, 2021
  • Apple releases iOS 15.0.2 with fix for zero-day exploited in the wild October 12, 2021
Copyright © 2021 Securezoo LLC. All rights reserved.