Security Intelligence

Golden Chickens lays ‘More_eggs lite’ backdoor

Golden Chickens MaaS linked to Venom Loader and RevC2 in addition to its primary “more_eggs” malware offering.

Security Intelligence

Decade-old vulnerability in Cisco ASA WebVPN recently exploited

Cisco warns a decade-old vulnerability in its Adaptive Security Appliance (ASA) is being exploited by threat actors.

Security Intelligence

New phishing service ‘rocks’ M365 user accounts

Rockstar 2FA, a new phishing-as-a-service (PhaaS) platform, observed targeting Microsoft 365 user accounts with...

Security Intelligence

Novel attack vector evades anti-phishing security controls

Unnamed threat actors observed using a new attack vector that leverages intentionally corrupted Word documents to evade...

Security Intelligence

The RAT race: What happens when RATs go undetected

Field Effect examines what would have happened if a stealthy Mark of the Web exploit designed to install RATs and...

Security Intelligence

Fear thy neighbors…they could be APT 28

APT 28 observed leveraging a technique dubbed the “nearest neighbor attack” to breach a Washington, DC-based company...

Security Intelligence

Salt Typhoon unleashes ‘GhostSpider’ on telecoms

Salt Typhoon observed deploying a new backdoor called ‘GhostSpider’ in its ongoing campaign targeting telecommunication...

Security Intelligence

A RomCom you don’t want to see…on your network.

Russia-aligned threat group RomCom exploits recent vulnerabilities in Firefox and Windows to deploy self-titled...

Security Intelligence

Apple issues emergency patch for RCE and CSS zero-days

Apple releases emergency security updates to address two critical zero-day vulnerabilities exploited in attacks...

Security Intelligence

Fortinet VPN zero-day exploited by Chinese threat actor

A Chinese threat actor known as BrazenBamboo has been observed exploiting a zero-day vulnerability in Fortinet’s...

Security Intelligence

Palo Alto confirms critical RCE bug in firewalls

Palo Alto confirms exploitation of an unauthenticated RCE vulnerability against management interfaces in its firewalls.

Security Intelligence

U.S. confirms politicians targeted in Salt Typhoon telecom breach

FBI and CISA confirm U.S. politicians were targeted in Chinese breach of large telecommunications and broadband...