Threat Post

Nefilim Ransomware Gang Hits Jackpot with Ghost Account

A Nefilim ransomware attack that locked up more than 100 systems stemmed from the compromise of an unmonitored account belonging to an employee who had died three months previously, researchers said.

Cisco DNA Center Bug Opens Enterprises to Remote Attack

The flaw, tracked as CVE-2021-1257, exists in the web-based management interface of the Cisco DNA Center, which is a centralized network-management and orchestration platform for Cisco DNA.

Discord-Stealing Malware Invades npm Packages

The CursedGrabber malware has infiltrated the open-source software code repository. Three malicious software packages have been published to npm, a code repository for JavaScript developers to share and reuse code blocks.

Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks

Netscout researchers have identified more than 14,000 existing servers that can be abused by ‘the general attack population’ to flood organizations’ networks with traffic.

Critical Cisco SD-WAN Bugs Allow RCE Attacks

“Cisco has released software updates that address these vulnerabilities,” according to Cisco in a Wednesday advisory. “There are no workarounds that address these vulnerabilities.”

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

NVIDIA's Shield TV is affected by one high-severity bug (CVE?2021?1068), with a 7.8 CVSS rating, that exists in the NVDEC component of the gadget, which is a hardware-based decoder.

Google Boots 164 Apps from Play Marketplace for Shady Ad Practices

Google has removed 164 apps, downloaded a total of 10 million times, from its Google Play marketplace because they were delivering “disruptive” ads, considered malicious.

Microsoft Implements Windows Zerologon Flaw 'Enforcement Mode'

Starting Feb. 9, Microsoft said it will enable domain controller “enforcement mode” by default, a measure that would help mitigate the vulnerability identified as CVE-2020-1472.

Hackers Leak Stolen Pfizer-BioNTech COVID-19 Vaccine Data

On the heels of a previously-reported cyberattack on the European Medicines Agency (EMA), cybercriminals have spilled compromised data related to COVID-19 vaccinations onto the internet.

High-Severity Cisco Flaw Found in CMX Software For Retailers

The vulnerability is part of a number of patches issued by Cisco addressing 67 high-severity CVEs. This included flaws found in Cisco’s AnyConnect Secure Mobility Client, as well as Cisco RV110W, RV130, RV130W, and RV215W small business routers.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags