7-Zip bug could allow a bypass of a Windows security feature. Update now
A vulnerability in 7-Zip that could allow attackers to bypass the MotW security feature in Windows has been patched.
Read moreMonth: January 2025
AI tool GeoSpy analyzes images and identifies locations in seconds
Forget OSINT, AI-supported tool GeoSpy can determine a person’s location based on their surroundings in a picture.
Read moreSophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing”
Credit to Author: gallagherseanm| Date: Tue, 21 Jan 2025 11:30:14 +0000
Sophos MDR identifies a new threat cluster riffing on the playbook of Storm-1811, and amped-up activity from the original connected to Black Basta ransomware.
Read moreInvestigating A Web Shell Intrusion With Trend Micro Managed XDR
Credit to Author: Stephen Carbery| Date: Tue, 14 Jan 2025 00:00:00 +0000
This blog discusses a web shell intrusion incident where attackers abused the IIS worker to exfiltrate stolen data.
Read moreTrend Micro™ Managed XDR Analysis of Infection From Fake Installers and Cracks
Credit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000
Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.
Read moreTrend Micro Managed XDR Analysis of Infection From Fake Installers and Cracks
Credit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000
Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.
Read moreYour location or browsing habits could lead to price increases when buying online
Companies are showing customers different prices for the same goods and services based what data they have on them, including details like their precise location or browser history.
Read moreHow to Get Around the US TikTok Ban
Credit to Author: Lily Hay Newman, Matt Burgess| Date: Sun, 19 Jan 2025 05:39:26 +0000
TikTok is now unavailable in the United States—and getting around the ban isn’t as simple as using a VPN. Here’s what you need to know.
Read moreUS Names One of the Hackers Allegedly Behind Massive Salt Typhoon Breaches
Credit to Author: Lily Hay Newman, Andy Greenberg| Date: Sat, 18 Jan 2025 11:30:00 +0000
Plus: New details emerge about China’s cyber espionage against the US, the FBI remotely uninstalls malware on 4,200 US devices, and victims of the PowerSchool edtech breach reveal what hackers stole.
Read more