CVE/vulnerability
Windows 0-Day Exploited in Wild with Single Right Click
A newly discovered zero-day vulnerability, CVE-2024-43451, has been actively exploited in the wild, targeting Windows systems across various versions.This critical vulnerability, uncovered by the ClearSky Cyber Security team in...
Cyber Attack
CRON#TRAP Campaign Attacks Windows Machine With Weaponized Linux Virtual Machine
Weaponized Linux virtual machines are used for offensive cybersecurity purposes, such as "penetration testing" or "exploiting vulnerabilities."These setups often use the tools and frameworks...
Cyber Security News
New Windows Downgrade Attack Let Hackers Downgrade Patched Systems To Exploits
The researcher discovered a vulnerability in the Windows Update process that allowed them to downgrade critical system components, including DLLs, drivers, and the NT...
cyber security
Exploiting Windows MiniFilter to Bypass EDR Protection
Windows Minifilter drivers are a type of file system filter driver that operates within the Windows operating system to manage and modify I/O operations...
CVE/vulnerability
CISA Warns of Windows MSHTML & Progress WhatsUp Gold Flaw Exploited Widely
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding two critical vulnerabilities affecting Microsoft Windows MSHTML and Progress WhatsUp Gold....
Cyber Security News
Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines
Earth Lusca is a suspected China-based cyber espionage group active since at least April 2019.Besides this, hackers often target Windows and Linux machines primarily...
Cyber Security News
Voldemort Threat Actors Abusing Google Sheets to Attack Windows UsersÂ
Researchers from Proofpoint have uncovered a sophisticated cyberattack campaign leveraging Google Sheets as a command and control (C2) platform.Dubbed "Voldemort" by the researchers,...
cyber security
.NET-based Snake Keylogger Attack Windows Using Weaponized Excel Documents
Researchers uncovered a sophisticated phishing campaign that exploits a .NET-based Snake Keylogger variant.This attack leverages weaponized Excel documents to infiltrate Windows systems, posing...
CVE/vulnerability
Lazarus Hacker Group Exploited Microsoft Windows Zero-day
The notorious Lazarus hacker group has been identified as exploiting a zero-day vulnerability in Microsoft Windows, specifically targeting the Windows Ancillary Function Driver for...
cyber security
BeaverTail Malware Attacking Windows Users Via Weaponized Games
Researchers uncovered a new malware campaign dubbed BeaverTail, a North Korean cyber espionage malware family primarily focusing on job seekers.Initially identified as a JavaScript-based...
cyber security
CrowdStrike Update Triggers Widespread Windows BSOD Crashes
A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users, leading to widespread reports of Blue Screen of Death (BSOD)...