Breaking News

•••  All important news related to new attacks and see the solutions we can offer you  •••

18/08/2020

Phishing Emails Used to Deploy KONNI Malware

Cyber Defense

Cyber actors using emails containing a Microsoft Word document with a malicious Visual Basic Application (VBA) macro code to deploy KONNI malware.
KONNI is a remote administration tool (RAT) used by malicious cyber actors to steal files, capture keystrokes, take screenshots, and execute arbitrary code on infected hosts.

Contact us for a test with Cymulate Breach and Attack Simulation
12/08/2020

CSP Bypass Vulnerability in Google Chrome Discovered

Cyber Defense

This vulnerability in Chrome browser could have allowed attackers to fully bypass CSP rules since Chrome 73 (March 2019), many of the biggest websites in the world are exposed to this vulnerability.

This vulnerability affecting Chromium based browsers - Chrome, Opera, Edge - on Windows, Mac and Android that allowed attackers to fully bypass CSP rules on Chrome versions 73 (March 2019) through 83 (July 2020).

To better understand the magnitude of this vulnerability - the potentially impacted users are in the billions, with Chrome having over two billion users, and more than 65% of the browser market on one hand, and some of the most popular sites on the web being vulnerable to this CVE on the other hand.
Vulnerable sites included Facebook, WellsFargo, Gmail , Zoom, Tiktok, Instagram, WhatsApp, Investopedia, ESPN, Roblox, Indeed, Blogger, Quora and more.

 

Contact us for a test with Cymulate Breach and Attack Simulation
10/08/2020

New infection chain of njRAT variant

Cyber Defense

New infection chain of njRAT variant

njRAT is a remote access Trojan providing remote control functions for attackers.
360 Total Security researchers have observed a new variant of the malware that has an updated infection chain, additional obfuscation, and anti-analysis techniques.

Test now with Cymulate Breach and Attack Simulation whether you are vulnerable

Contact us
Load more