MalwareUpdated version of wiper malware used in Viasat hack emergesSC StaffMarch 19, 2024Significant improvements have been implemented in the new variant of the AcidRain wiper malware leveraged by Russia to compromise satellite internet provider Viasat.
Application securityFake Google Docs on Google Sites launch AZORult infostealer campaignSteve ZurierMarch 18, 2024Azorult infostealer aims to steal user credentials and credit card information via HTML smuggling.
MalwareNorth American manufacturing subjected to Ande Loader malware compromiseSC StaffMarch 15, 2024Attacks with Ande Loader have been facilitated by phishing emails with RAR and BZ2 archives.
Vulnerability ManagementCynicism, TikTok, Redline, Securam, Ghostrace, eSim Swaps, Aaran Leyland, and More – SWN #369March 15, 2024Cynicism, TikTok, Redline, Securam, Ghostrace, MicroOrange, eSim Swaps, Aaran Leyland, and More on this edition of the Security Weekly News.
IdentityRedLine malware top credential stealer of last 6 monthsStephen WeigandMarch 14, 2024RedLine was used to steal over 170 million passwords in the last six months, or nearly half of all stolen passwords.
Cloud SecurityPhishing campaign leverages AWS and GitHub to launch RATsSteve ZurierMarch 12, 2024Attackers continue to leverage popular AWS cloud and GitHub developer services as a way to “live-off-the-land” and launch malware.
Email securityBrazil subjected to novel CHAVECLOAK trojan attacksSC StaffMarch 12, 2024Attackers leveraged phishing emails using contract-themed DocuSign lures that included PDF attachments.
Vulnerability ManagementDem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet and More – SWN #368March 12, 2024Dem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet, and More are on this edition of the Security Weekly News.