Nearly 65,000 attacks leveraging Windows Print Spooler exploits have been observed from July 2021 to April 2022, with almost 50% of the attacks happening during the first four months of 2022, TechRepublic reports.
Italy, Turkey, and South Korea were the countries most hit by attacks between July 2021 and April 2022, but the first four months of the year saw the most activity in Austria, France, and Slovenia, a report from Kasperksy revealed.
"Windows Print Spooler vulnerabilities are a hotbed for emerging new threats. We anticipate a growing number of exploitation attempts to gain access to resources within corporate networks, accompanied by a high-risk of ransomware infection and data theft. Through some of these vulnerabilities, attackers can gain access not only to victims data but also to the whole corporate server. Therefore, it is strongly recommended that users follow Microsofts guidelines and apply the latest Windows security updates," said Kaspersky security researcher Alexey Kulaev.
SiliconAngle reports that mounting security alert fatigue has prompted Torq to introduce its new HyperSOC system based on its Hyperautomation Platform using artificial intelligence to enable security operation center response automation, management, and monitoring in a bid to bolster the investigation and remediation of cybersecurity threats.
Moldovan botnet operator Alexander Lefterov, also known as Alipatime, Alipako, and Uptime, has been indicted by the U.S. Department of Justice for his involvement in widespread attacks against U.S.-based computers, BleepingComputer reports.