Homeland Security Today

Fallout Exploit Kit Used in Malvertising Campaign to Deliver GandCrab Ransomware

Towards the end of August 2018, FireEye identified a new exploit kit (EK) that was being served up as part of a malvertising campaign affecting users in Japan, Korea, the Middle East, Southern Europe, ...
Forbes

Play Ransomware Zero-Day Attacks — What You Need To Know

A joint investigation by the Microsoft Threat Intelligence Center and Microsoft Security Response Center found that a zero-day vulnerability in the Windows Common Log File System had been exploited by ...

The latest ransomware attack used an alleged NSA exploit

The tool the ransomware uses to get inside computers is called Eternal Blue, and it's more of an exploit than a tool. Leaked ...
Homeland Security Today

Exploit Kits: The Silent Web Threat Affecting Billions

When we talk to people whose computers have been infected, they often ask how it happened. In a growing number of cases, they have been doing nothing more than reading a news website or browsing for ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
TechRepublic

Hackers Used New Exploit Kit to Compromise Thousands of iPhones

Thousands of iPhones were compromised using the Coruna exploit kit, which chained 23 iOS vulnerabilities into advanced attacks used for espionage and cybercrime. An iOS exploit framework has revealed ...
Hosted on MSN

Infosec exec sold eight zero-day exploit kits to Russia, says DOJ

Infosec in Brief The former General Manager of defense contractor L3Harris’s cyber subsidiary Trenchant sold eight zero-day exploit kits to Russia, according to a court filing last week.… We first ...
Bleeping Computer

Cybercriminals exploit AI hype to spread ransomware, malware

Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads. This development follows a trend that has been ...
The National Law Review

90% of Ransomware Incidents Exploit Firewalls

90% of ransomware incidents exploit firewalls – and the fastest observed ransomware case took three hours from breach to encryption. Most widely detected CVE vulnerability dates from 2013 – 11% of ...
Morning Overview on MSN

The average time from a vulnerability being published to a working exploit is now just 10 hours

In late May 2023, a critical flaw in the MOVEit file-transfer platform was publicly disclosed. Within hours, the Cl0p ...
Dark Reading

Medusa Ransomware Actors Exploit Critical Fortra GoAnywhere Flaw

Threat actors armed with Medusa ransomware are actively exploiting a maximum-severity security vulnerability in Fortra's GoAnywhere managed file transfer (MFT) product, sparking more questions about ...