Attacker groups adopt new penetration testing tool Brute Ratel
APT group's use of a legitimate pen-testing tool gives them stealth capabilities, allowing them to avoid detection by EDR and antivirus tools.
Stories by Lucian Constantin
-
-
APT campaign targeting SOHO routers highlights risks to remote workers
The ZuoRAT remote access Trojan malware can compromise multiple router brands and likely has been active for years.
-
Dozens of insecure-by-design flaws found in vendor OT products
A new research project from OT:ICEFALL has uncovered 56 vulnerabilities in operational technology (OT) devices from 10 different vendors.
-
Ransomware could target OneDrive and SharePoint files by abusing versioning configurations
A proof-of-concept exploit could make Office 365 or Microsoft 365 documents stored on OneDrive or SharePoint inaccessible.
-
New peer-to-peer botnet Panchan hijacks Linux servers
Researchers warn of a new worm that's infecting Linux servers by brute-forcing and stealing SSH credentials.
-
Hackers using stealthy Linux back-door Symbiote to steal credentials
Researchers have come across a stealthy Linux backdoor that uses sophisticated techniques to hide itself on compromised servers and steal credentials.
-
Zero-day flaw in Atlassian Confluence exploited in the wild since May
Atlassian has issued emergency patches for the vulnerability, which could allow attackers to perform remote code execution.
-
Cyber criminals look to exploit Intel vulnerabilities for highly persistent implants
Leaked Conti information show the ransomware gang likely completed a proof of concept to exploit Intel ME and rewrite its firmware.
-
Conti ransomware explained: What you need to know about this aggressive criminal group
The Conti ransomware group is less likely to help victims restore encrypted files and more likely to leak exfiltrated data.
-
Microsoft gives mitigation advice for Follina vulnerability exploitable via Office apps
The actively exploited flaw allows attackers to use malicious Word documents to perform remote code execution through Microsoft Support Diagnostic Tool.
-
Google Cloud to launch repository service with security-tested versions of open source software packages
The paid Assured Open Source Software service will offer common open source packages after vetting the provenance of its code and dependencies.
-
Stealthy Linux implant BPFdoor has compromised businesses for years, notably in Vietnam
Malware researchers warn about a stealthy backdoor program that has been used by a Chinese threat actor to compromise Linux servers around the world.
-
TLS implementation flaws open Aruba and Avaya network switches to attack
The network switch vulnerabilities are considered critical and could allow attackers to break network segmentation, exfiltrate data, and escape captive portals.
-
Researchers break Azure PostgreSQL database-as-a-service isolation with cross-tenant attack
Although the vulnerabilities were patched server-side, they allowed privilege escalation and authentication bypass.
-
Why businesses should patch the latest critical Windows RPC vulnerability right now
Among the over 100 vulnerabilities fixed by Microsoft during the past week in its monthly patch cycle is one that has the security community very worried.
Events
ARN Innovation Awards 2022
Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.
EDGE 2022
EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.
Brand Post
Channel Roadmap
The Channel Roadmap is a bespoke content hub housing strategic priorities from technology vendors for 2022 and beyond, partners can find the guidance on the key technologies and markets to pursue, to help build a blueprint for future success.
Sponsored By
