Category: alerts

Record-breaking distributed denial of service attack targets Russia’s version of Google – Yandex. Read more

John Hammond, security researcher with Huntress, discusses how financially motivated cybercrooks use and abuse cryptocurrency. Read more

They were posted for free by former Babuk gang members who’ve bickered, squabbled and huffed off to start their own darn ransomware businesses, dagnabbit. Read more

A chain of exploits could allow a malicious Azure user to infiltrate other customers’ cloud instances within Microsoft’s container-as-a-service offering. Read more

Grayfly campaigns have launched the novel malware against businesses in Taiwan, Vietnam, the US and Mexico and are targeting Exchange and MySQL servers.  Read more

An authentication bypass vulnerability leading to remote code execution offers up the keys to the corporate kingdom. Read more

Australian immunization app bug lets attackers fake vaccine status. Read more

Attackers are actively attempting to exploit a vulnerability in MSHTML that allows them to craft a malicious ActiveX control to be used by Microsoft Office files. Read more

The Demon’s Cries, Draconian Fear and Seventh Inferno security bugs are high-severity entryways to corporate networks. Read more

Original release date: September 7, 2021 Microsoft has released mitigations and workarounds to address a remote code execution vulnerability (CVE-2021-40444) in Microsoft Windows. Exploitation of this vulnerability may allow a remote attacker to take control of an affected system. This vulnerability has been detected in exploits in the wild.  CISA encourages users and administrators to review… Read more