A security researcher has developed new proof-of-concept (PoC) code that can exploit an SMBv3 compression remote code execution (RCE) vulnerability CVE-2020-0796 on unpatched Windows systems.
TrickBot recently replaced one of its propagation modules "mworm" with new module named "nworm." The updated module can exploit vulnerable domain controllers (DCs) and evade detection by running in memory.
Microsoft released the March 2020 Security Updates that include 115 unique vulnerability fixes, 26 of those rated critical. This is the largest patch release in Microsoft's history. Microsoft also issued guidance and a new security update to fix an SMBv3 RCE vulnerability dubbed SMBGhost.
Samba has released software updates for three security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
Samba has released a software update and patches for three security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
The Federal Trade Commission (FTC) announcedOperation Main Street: Stopping Small Business Scams, a coordinated joint effort with the Better Business Bureau (BBB), law enforcement and state/federal partners, to help stop scams that target small businesses.
A new US-CERT Technical Alert (TA) warned cyber actors are using Joanap and Brambul malware to target multiple victims worldwide.
Researchers at Proofpoint have been tracking a massive distributed botnet dubbed Smominru, a Monero cryptocurrency miner, that spreads using the EternalBlue Exploit (CVE-2017-0144).
LG Electronics confirmed that WannaCry ransomware was responsible for last week's infections that took down self-service kiosks.
A free vulnerability scanner, "Eternal Blues", was developed in late June by a security director Elad Erez to scan for Microsoft Windows SMB Server vulnerabilities, such as those exploited by recent WannaCry campaign and EternalBlue-based attacks.