SEARCH
Archive
Microsoft Fixes Actively Exploited Windows Zero-Day
Microsoft issued a fix for a use-after-free Windows vulnerability that was being leveraged in attacks, as part of its October Patch Tuesday roundup.
Attackers Tied to Iran Targeting Office 365 in Password Spraying Campaign
A new group with ties to the Iranian government is conducting a password-spraying campaign against Office 365 accounts.
Nobelium Deploying FoggyWeb Backdoor in Targeted Attacks
The Nobelium attackers, who are responsible for the SolarWinds intrusion, have been deploying a new backdoor called FoggyWeb in targeted attacks.
Azure OMIGOD Flaw Under Attack
The Azure OMI vulnerability (CVE-2021-38647) is under attack by several threat actors, including the Mirai botnet operators.
MSHTML Zero Day Exploits Used Shared Infrastructure With Ransomware Group
Attackers exploiting the CVE-2021-40444 Windows flaw used infrastructure also known to be associated with a ransomware group.