The North Korean hacking group known as Kimsuky was observed in recent attacks using a custom-built RDP Wrapper and proxy tools to directly access infected machines. […] Go to Source Author: Bill Toulas
Author Archives: Onsite Computing, Inc.
CISA warned U.S. federal agencies on Thursday to secure their systems against ongoing attacks targeting a critical Microsoft Outlook remote code execution (RCE) vulnerability. […] Go to Source Author: Sergiu Gatlan
Hackers are targeting vulnerable SimpleHelp RMM clients to create administrator accounts, drop backdoors, and potentially lay the groundwork for ransomware attacks. […] Go to Source Author: Bill Toulas
Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root. […] Go to Source Author: Sergiu Gatlan
An ongoing distributed denial of service (DDoS) attack targets Bohemia Interactive’s infrastructure, preventing players of DayZ and Arma Reforger from playing the games online. […] Go to Source Author: Bill Toulas
When it comes to protecting your company from cyberattacks, you don’t have to be the fastest gazelle — you just can’t afford to be the slowest. Go to Source Author: Boaz Barzel
British-based engineering firm IMI plc has disclosed a security breach after unknown attackers hacked into the company’s systems. […] Go to Source Author: Sergiu Gatlan
Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China. “This actor has increasingly targeted […]
Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline from $1.25 billion in 2023. The total amount extorted during the first half of 2024 stood at $459.8 million, blockchain intelligence firm Chainalysis said, adding payment activity slumped after July 2024 by about 3.94%. “The number of ransomware events increased into […]
A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple’s and Google’s respective app stores to steal victims’ mnemonic phrases associated with cryptocurrency wallets. The attacks leverage an optical character recognition (OCR) model to exfiltrate select images containing wallet recovery phrases from photo libraries to a command-and-control (C2) server, […]