Zoho ManageEngine flaw is actively exploited, new warning shows
A remote code execution vulnerability in Zoho's ManageEngine, a popular IT management solution for enterprises, is being exploited in the wild.
Stories by Lucian Constantin
-
-
Ransomware operators might be dropping file encryption in favour of corrupting files
Corrupting files is faster, cheaper, and less likely to be stopped by endpoint protection tools than encrypting them.
-
Iranian cyber spies use multi-persona impersonation in phishing threads
Iran-sponsored groups use fake personas of real people to add credibility to phishing emails designed to deliver malware through remote template injection.
-
North Korean state-sponsored hacker group Lazarus adds new RAT to malware toolset
Lazarus has used the new remote access Trojan in campaigns that exploit the Log4Shell vulnerability and target energy companies.
-
How Azure Active Directory opens new authentication risks
Hybrid cloud identity and access management services add complexity and opportunity for attackers to network authentication processes.
-
Ragnar Locker continues trend of ransomware targeting energy sector
Ransomware gangs seem to be exploiting concerns over disruptions in the energy and other critical infrastructure sectors.
-
Multi-stage crypto-mining malware hides in legitimate apps with month-long delay trigger
The Nitrokod cryptocurrency mining campaign goes to great lengths to avoid detection and can remain active for a number of years.
-
Sophisticated scammers bypass Microsoft 365 multi-factor authentication
Hackers have developed ways to bypass multi-factor authentication on cloud productivity services like Microsoft 365, formerly Office 365.
-
New ransomware HavanaCrypt poses as Google software update
A new strain of ransomware has been making victims for the past two months, masquerading as a Google software update application.
-
"Evil PLC Attack" weaponises PLCs to infect engineering workstations
Researchers demonstrate a proof of concept where hijacked programmable logic controllers can compromise engineering workstations to allow lateral movement.
-
New exploits can bypass Secure Boot and modern UEFI security protections
Two research groups demonstrate PC firmware vulnerabilities that are difficult to mitigate and likely to be exploited in the wild.
-
Chinese APT group uses multiple backdoors in attacks on military and research organisations
The TA428 group has been successful by targeting known vulnerabilities and using known detection evasion techniques.
-
Sophisticated malware of Chinese origin shows up again in the wild after 3 years
The sophisticated rootkit malware infects system firmware to avoid detection and has claimed victims in China, Iran, Vietnam and Russia.
-
GPS trackers used for vehicle fleet management can be hijacked by hackers
At least one model of GPS tracking devices made by Chinese firm MiCODUS "lacks basic security protections needed to protect users from serious security issues".
-
New speculative execution attack Retbleed impacts Intel and AMD CPUs
Unlike other speculative execution attacks like Spectre, Retbleed exploits return instructions rather than indirect jumps or calls.
Events
ARN Innovation Awards 2022
Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.
EDGE 2022
EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.
Brand Post
Hybrid work is an ongoing opportunity of transformation for the channel: GoTo
Sponsored By
