zerologon Archives - AZGAD WEBSITE SECURITY BLOG

Friday, April 26, 2024

Latest:

2020-11-25 Lindsey O'Donnell

Critical MobileIron RCE Flaw Under Active Attack

Attackers are targeting the critical remote code-execution flaw to compromise systems in the healthcare, local government, logistics and legal sectors, among others.

apt Attackers China Cicada domain controller Exploit Government Malware Microsoft Microsoft Active Directory privilege escalation threat actors zero day zerologon

2020-11-19 Elizabeth Montalbano

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks.

Cobalt Strike COVID-19 FakeUpdates Hacks infostealer Malware microsoft teams predator the thief ransomware Vulnerabilities Web Security zerologon

2020-11-10 Elizabeth Montalbano

Microsoft Teams Users Under Attack in ‘FakeUpdates’ Malware Campaign

Microsoft warns that cybercriminals are using Cobalt Strike to infect entire networks beyond the infection point, according to a report.

CISA COVID-19 cyberattack Trump election security elections security FBI Government Hacks hospital ransomware hospital security Malware Microsoft patch patient death patient safety Podcasts ransomware ryuk smbghost U.S. elections Vulnerabilities Web Security Windows windows flaw zerologon

2020-10-30 Lindsey O'Donnell

Halloween News Wrap: The Election, Hospital Deaths and Other Scary Cyberattack Stories

Threatpost breaks down the scariest stories of the week ended Oct. 30 haunting the security industry — including bugs that just won’t die.

apt Attackers Cybersecurity and Infrastructure Security Agency Department of Homeland Security domain controller Exploit Government Hacks Microsoft Microsoft Active Directory patch privilege escalation threat actors Vulnerabilities zero day zerologon

2020-10-30 Elizabeth Montalbano

Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers.

Cyberattacks healthcare system Hospitals kegtap Malware mandiant report Phishing ransomware ryuk singlemalt Spam u.s. cybercommand UNC1878 warning winekey zerologon

2020-10-30 Becky Bracken

Kegtap, Singlemalt, Winekey Malware Serve Up Ransomware to Hospitals

Amid an uptick in attacks on healthcare orgs, malware families, Kegtap, Singlemalt and Winekey are being used to deliver the Ryuk ransomware to already strained systems.

advanced persistent threats apt bluekeep bug parade Bugs Cactus Pete China china backed chinese CVE-2019-11510 Cyberattacks Exchange f5 Government Microsoft Windows most exploited nation state NSA Patches pulse vpn Security Vulnerabilities TA413 top 25 top exploits vicious panda Vulnerabilities winniti zerologon

2020-10-22 Tara Seals

Bug Parade: NSA Warns on Cresting China-Backed Cyberattacks

The Feds have published a Top 25 exploits list, rife with big names like BlueKeep, Zerologon and other notorious security vulnerabilities.

Active Directory attack analysis bazar loader Cobalt Strike CVE-2020-1472 dfir report five hours initial phishing email Malware privilege escalation ryuk Vulnerabilities Web Security zerologon

2020-10-19 Tara Seals

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Researchers said the group was able to move from initial phish to full domain-wide encryption in just five hours.

Active Directory attack analysis bazar loader Cobalt Strike CVE-2020-1472 dfir report initial phishing email Malware privilege escalation ryuk Vulnerabilities Web Security zerologon

2020-10-19 Tara Seals

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Researchers said the group was able to move from initial phish to full domain-wide encryption in just five hours.

alert APTs chaining CISA Citrix NetScaler Critical Infrastructure CVE-2018-13379 CVE-2019-11510 CVE-2019-19781 CVE-2020-1472 CVE-2020-15505 CVE-2020-2021 CVE-2020-5902 election security election systems exploit chain F5 BIG-IP FBI government attacks Microsoft mobileiron Palo Alto Networks pulse secure VPN Vulnerabilities warning Web Security zerologon

2020-10-13 Lindsey O'Donnell

Election Systems Under Attack via Microsoft Zerologon Exploits

Cybercriminals are chaining Microsoft’s Zerologon flaw with other exploits in order to infiltrate government systems, putting election systems at risk, a new CISA and FBI advisory warns.

← Previous

By continuing to use the site, you agree to the use of cookies. more information