相關新聞
Lumma Stealer Packed with CypherIt Distributed Using Falcon Sensor Update Phishing Lure
On July 23, 2024, CrowdStrike Intelligence identified the phishing domain crowdstrike-office365[.]com, which impersonates CrowdStrike and delivers malicious ZIP and RAR files containing a Microsoft Installer (MSI) loader. The loader ultimately executes Lumma Stealer packed with CypherIt...
CrowdStrike
2024年07月24日 93 觀看次數
Threat Actor Distributes Python-Based Information Stealer Using a Fake Falcon Sensor Update Lure
On July 23, 2024, CrowdStrike Intelligence identified a malicious ZIP file containing a Python-based information stealer now tracked as Connecio. [...]
CrowdStrike
2024年07月24日 128 觀看次數
Cybercriminals Exploit CrowdStrike Outage Chaos
Cybercriminals are leveraging the ongoing mass global IT outage to launch phishing campaigns, according to reports. [...]
CrowdStrike
2024年07月23日 126 觀看次數
Threat Actor Uses Fake CrowdStrike Recovery Manual to Deliver Unidentified Stealer
On July 22, 2024, CrowdStrike Intelligence identified a Word document containing macros that download an unidentified stealer now tracked as Daolpu. The document impersonates a Microsoft recovery manual.1 Initial analysis suggests the activity is likely criminal. [...]
CrowdStrike
2024年07月23日 114 觀看次數
Fake CrowdStrike fixes target companies with malware, data wipers
Threat actors are exploiting the massive business disruption from CrowdStrike's glitchy update on Friday to target companies with data wipers and remote access tools.
Bleeping Computer
2024年07月22日 208 觀看次數
Falcon Sensor Content Issue from July 19, 2024, Likely Used to Target CrowdStrike Customers
On July 19, 2024, an issue present in a single content update for the CrowdStrike Falcon® sensor impacting Windows operating systems was identified, and a fix was deployed.
CrowdStrike
2024年07月22日 115 觀看次數
Cisco SSM On-Prem bug lets hackers change any user's password
Cisco has fixed a maximum severity vulnerability that allows attackers to change any user's password on vulnerable Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers, including administrators. [...]
Bleepingcomputer
2024年07月18日 113 觀看次數
Kaspersky is shutting down its business in the United States
Russian cybersecurity company and antivirus software provider Kaspersky Lab will start shutting down operations in the United States on July 20. [...]
Bleepingcomputer
2024年07月16日 164 觀看次數
SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks
The SEXi ransomware operation, known for targeting VMware ESXi servers, has rebranded under the name APT INC and has targeted numerous organizations in recent attacks. [...]
Bleepingcomputer
2024年07月15日 90 觀看次數
Signal downplays encryption key flaw, fixes it after X drama
Signal is finally tightening its desktop client's security by changing how it stores plain text encryption keys for the data store after downplaying the issue since 2018. [...]
Bleepingcomputer
2024年07月12日 194 觀看次數
