All posts tagged cyber

■■■□□ Too Log; Didn’t Read — Unknown Actor Using CLFS Log Files for Stealth. https://www.fireeye.com/blog/threat-research/2021/09/unknown-actor-using-clfs-log-files-for-stealth.html https://t.me/cKure/9264

■■□□□ AT&T Alien Labs has discovered a new campaign by threat group TeamTNT that is targeting multiple operating systems and applications.  https://cybersecurity.att.com/blogs/labs-research/teamtnt-with-new-campaign-aka-chimaera https://t.me/cKure/9263

■■□□□ Data-Leak: Actor claims to have hacked a private entity in UAE exploiting a CMS bug and dumping documents which include IDs and passports. ● The claim could not be independently be verified by us as neither exploit nor any sample has been shared by the attacker. However, we may receive samples. https://t.me/cKure/9262

■■□□□ Lazarus APT https://mp.weixin.qq.com/s/axdINLybUO3b7U-i8H-Bww https://t.me/cKure/9261

Internet Explorer: Incorrect JIT optimization in jscript9.dll leading to memory corruption https://bugs.chromium.org/p/project-zero/issues/detail?id=2188 https://t.me/cKure/9260

■□□□□ Windows MSHTML zero-day actively exploited, mitigations required. https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/09/windows-mshtml-zero-day-actively-exploited-mitigations-required https://t.me/cKure/9259

■□□□□ Groove ransomware gang mentioned U.S. President Joe Biden. https://twitter.com/darktracer_int/status/1435955881129091075 https://t.me/cKure/9258

■■□□□ Yandex is under the largest DDoS attack in the history of Runet. https://securityaffairs.co/wordpress/122028/hacking/yandex-ddos-attack.html https://t.me/cKure/9257

■□□□□ 91% of IT teams have felt ‘forced’ to trade security for business operations. https://www.zdnet.com/article/91-of-it-teams-have-felt-forced-to-trade-security-for-business-operations https://t.me/cKure/9256

■□□□□ https://owasp.org/Top10/ https://t.me/cKure/9255