Windows

Researchers Warn of NTLMv1 Bypass in Active Directory Policy

2 minute read

Security

Researchers Warn of NTLMv1 Bypass in Active Directory Policy

Silverfort has discovered that a misconfiguration can bypass an Active Directory Group Policy designed to disable NTLMv1, allowing…

byDeeba Ahmed

January 17, 2025

3 minute read

Fake PoC Exploit Targets Cybersecurity Researchers with Malware

A fake proof-of-concept (PoC) exploit designed to lure cybersecurity researchers into downloading malicious software. This deceptive tactic leverages a recently patched critical vulnerability in Microsoft's Windows LDAP service (CVE-2024-49113), which can cause denial-of-service attacks.

byDeeba Ahmed

January 11, 2025

New DCOM Attack Exploits Windows Installer for Backdoor Access

3 minute read

Security

New DCOM Attack Exploits Windows Installer for Backdoor Access

SUMMARY Cybersecurity researchers at Deep Instinct have uncovered a novel and powerful Distributed Component Object Model (DCOM) based…

byDeeba Ahmed

December 11, 2024

2 minute read

Critical Windows Zero-Day Alert: No Patch Available Yet for Users

Protect your systems with automated patching and server hardening strategies to defend against vulnerabilities like the NTLM zero-day.…

byUzair Amir

December 9, 2024

Russian Hackers Exploit Firefox and Windows Zero-Days to Deploy Backdoor

2 minute read

Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor

Watch out for the Russian hackers from the infamous RomRom group, also known as Storm-0978, Tropical Scorpius, or UNC2596, and their use of a custom backdoor.

byWaqas

November 27, 2024

3 minute read

Linux Variant of Helldown Ransomware Targets VMware ESX Servers

Cybersecurity firm Sekoia has discovered a new variant of Helldown ransomware. The article details their tactics and how…

byDeeba Ahmed

November 20, 2024

2 minute read

Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack

A critical vulnerability in the Windows Kerberos authentication protocol poses a significant risk to millions of servers. Microsoft…

byDeeba Ahmed

November 19, 2024

3 minute read

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Microsoft’s November 2024 Patch Tuesday update fixes 91 security vulnerabilities, including four zero-day vulnerabilities. Critical fixes address actively…

byWaqas

November 12, 2024

3 minute read

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

This article explains the inner workings of the Remcos RAT, a dangerous malware that uses advanced techniques to…

byDeeba Ahmed

November 9, 2024

3 minute read

New SteelFox Malware Posing as Popular Software to Steal Browser Data

SteelFox malware targets software pirates through fake activation tools, stealing credit card data and deploying crypto miners. Learn…

byWaqas

November 8, 2024

The Latest

BreachForums Admin Conor Fitzpatrick (Pompompurin) to Be Resentenced

Redline, Vidar and Raccoon Malware Stole 1 Billion Passwords in 2024

PARSIQ’s Reactive Network Provides Solution for DeFi Exchange Vulnerabilities

New Mirai Variant Murdoc_Botnet Launches DDoS Attacks via IoT Exploits

Windows

Researchers Warn of NTLMv1 Bypass in Active Directory Policy

Fake PoC Exploit Targets Cybersecurity Researchers with Malware

New DCOM Attack Exploits Windows Installer for Backdoor Access

Critical Windows Zero-Day Alert: No Patch Available Yet for Users

Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor

Linux Variant of Helldown Ransomware Targets VMware ESX Servers

Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Hackers Use Excel Files to Deliver Remcos RAT Variant on Windows

New SteelFox Malware Posing as Popular Software to Steal Browser Data

Aembit Announces Speaker Lineup for the Inaugural NHIcon

Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%

Wultra Secures €3M to Protect Financial Institutions from Quantum Threats

Criminal IP Launches Real-Time Phishing Detection Tool on Microsoft Marketplace

Security Risk Advisors joins the Microsoft Intelligent Security Association