Windows MSHTML bug used in ransomware attacks, Microsoft says
According to the Windows maker, in the wild exploitation of CVE-2021-40444 began on August 18.
Cybersecurity News - Page 288
State-backed hackers actively exploiting recently disclosed Zoho RCE bug
The targeted entities include academic institutions, defense contractors, as well as critical infrastructure entities.
Free REvil/Sodinokibi ransomware universal decryptor released
The tool works for all REvil victims whose files were encrypted in attacks prior to July 13, 2021.
OWASP updates top 10 vulnerability ranking
The list of the most dangerous web vulnerabilities was updated the last time in November 2017.
Grief ransomware gang threatens to destroy decryption key if victim calls in ransomware negotiator
Grief is the latest ransomware gang to threaten its victims with data destruction if they hire a ransomware negotiator.
Mēris botnet targets MikroTik routers hacked in 2018
Router owners are advised to change password, re-check their firewall settings to block untrusted remote access and check for suspicious scripts.
Microsoft’ September 2021 Patch Tuesday fixes over 60 security bugs, including MSHTML zero-day
The company fixed some high-risk vulnerabilities in Microsoft Edge, Excel, Word, Office, and other products.
Three former US intelligence operatives fined for working as hackers-for-hire for UAE
The defendants helped the UAE government to hack into computer systems all over the world, including the US.
Google patches two Chrome zero-days exploited in the wild
Both zero-day vulnerabilities are memory bugs.
Apple fixes zero-day used to deploy Pegasus spyware
The FORCEDENTRY exploit works on iOS 14 devices and is able to circumvent Apple’s BlastDoor security system.
Showing elements 2871 - 2880