Threat Intelligence

6 02, 2019

Threadkit, Formbook Exploit Old Microsoft Vulnerability

By | February 6th, 2019|Threat Intelligence|Comments Off on Threadkit, Formbook Exploit Old Microsoft Vulnerability on Threadkit, Formbook Exploit Old Microsoft Vulnerability

A Microsoft Office vulnerability first discovered in July 2017 has been exploited by Formbook malware
1 02, 2019

New FaceTime Bug Allows Audio, Video Eavesdropping

By | February 1st, 2019|Threat Intelligence|Comments Off on New FaceTime Bug Allows Audio, Video Eavesdropping on New FaceTime Bug Allows Audio, Video Eavesdropping

The FaceTime Bug allowing unauthorized microphone and camera access is the latest chapter in Apple’s information disclosure story
30 01, 2019

Kuwait Oil Company Spreadsheet Delivering OmniRAT to OT Networks

By | January 30th, 2019|Threat Intelligence|Comments Off on Kuwait Oil Company Spreadsheet Delivering OmniRAT to OT Networks on Kuwait Oil Company Spreadsheet Delivering OmniRAT to OT Networks

A weaponized Excel file titled “Kuwait Oil Company Business Profile” breathes new life into an old vulnerability, raising concern for unsuspecting OT networks
7 12, 2018

Zero-Day Attack on Russia Prompts OOB Patches

By | December 7th, 2018|Threat Intelligence|Comments Off on Zero-Day Attack on Russia Prompts OOB Patches on Zero-Day Attack on Russia Prompts OOB Patches

A malicious Word document was used to exploit an Abobe Flash Player bug in a targeted zero-day attack on Russia
21 08, 2018

MikroTik Routers Infected in Mass-Scale Coinhive Cryptojacking Campaign

By | August 21st, 2018|Threat Intelligence|Comments Off on MikroTik Routers Infected in Mass-Scale Coinhive Cryptojacking Campaign on MikroTik Routers Infected in Mass-Scale Coinhive Cryptojacking Campaign

More than 200,000 MikroTik routers have been infected worldwide, an upgrade to the firmware is available
27 07, 2018

Oracle WebLogic Vulnerability Used for Cryptomining and Other Attacks

By | July 27th, 2018|Threat Intelligence|Comments Off on Oracle WebLogic Vulnerability Used for Cryptomining and Other Attacks on Oracle WebLogic Vulnerability Used for Cryptomining and Other Attacks

A recently published Oracle WebLogic vulnerability has been exploited in large-scale campaigns, many to mine cryptocurrency for the attackers such as Iuoxk Group
28 05, 2018

VPNFilter Malware: What we know so far on the router threat

By | May 28th, 2018|Threat Intelligence|Comments Off on VPNFilter Malware: What we know so far on the router threat on VPNFilter Malware: What we know so far on the router threat

A new destructive VPNFilter malware has compromised 500,000 networking devices worldwide
10 05, 2018

Double Kill Exploit Jumps From MS Office to Internet Explorer

By | May 10th, 2018|Threat Intelligence|Comments Off on Double Kill Exploit Jumps From MS Office to Internet Explorer on Double Kill Exploit Jumps From MS Office to Internet Explorer

The Double Kill exploit of a VBScript Engine vulnerability uses a first-of-its-kind attack method we’ll likely see more of in the future
26 04, 2018

Drupalgeddon2 Attack Puts Sites at Risk Worldwide

By | April 26th, 2018|Threat Intelligence|Comments Off on Drupalgeddon2 Attack Puts Sites at Risk Worldwide on Drupalgeddon2 Attack Puts Sites at Risk Worldwide

Several malware families including Monero cryptominer and the Muhstik botnet are using the Drupalgeddon2 vulnerability