Browsing: Threat Intelligence

2000 Un-Patched Palo Alto Firewalls Exploited Via PAN-OS Vulnerabilities

Kirsten DoyleNovember 25, 20244 Mins Read

More than 2,000 Palo Alto Networks PAN-OS firewalls have been targeted following the disclosure and patching of two security vulnerabilities…

Unmasking WolfsBane: Gelsemium’s New Linux Weapon

Kirsten DoyleNovember 22, 20243 Mins Read

ESET researchers have uncovered WolfsBane, a Linux cyberespionage backdoor attributed with high confidence to the Gelsemium advanced persistent threat (APT)…

Microsoft Vulnerability Poses Risk to Domain Control

Kirsten DoyleNovember 19, 20242 Mins Read

A recently disclosed flaw in Microsoft Active Directory Certificate Services (ADCS), identified as CVE-2024-49019, could allow attackers to escalate privileges…

Fortra Reports Alarming Increase in Abuse of Cloudflare Services

Josh Breaker RolfeNovember 18, 20243 Mins Read

Cloudflare’s Pages and Workers platforms have experienced a surge of malicious activity in the past year, research from Fortra’s Suspicious…

Google Debuts Online Fraud and Scams Advisory

Kirsten DoyleNovember 15, 20243 Mins Read

Google has launched a regular fraud and scams advisory to combat the growing volume and sophistication of online scams. Multinational…

New Wave of Phishing Attacks Exploits Microsoft Visio Files for Two-Step Credential Theft

ISB Staff ReporterNovember 12, 20243 Mins Read

Researchers at cybersecurity firm Perception Point have identified a new type of two-step phishing attack that exploits Microsoft Visio files…

Microsoft Warns of Major Credential Theft by Chinese Hackers Via Covert Network Attacks

Kirsten DoyleNovember 4, 20244 Mins Read

Since August last year, Microsoft has identified a surge in intrusion activity with attackers using sophisticated password spray techniques to…

Redline Stealer Dominates: VIPRE’s Q3 Report Highlights Sophisticated BEC Tactics and Evolving Malware Trends

Dilki RathnayakeNovember 1, 20243 Mins Read

VIPRE Security Group’s Q3 2024 Email Threat Trends Report reveals the increasing sophistication of email-based threats, particularly business email compromise…

Malicious npm Packages Found to Distribute BeaverTail Malware

ISB Staff ReporterOctober 29, 20243 Mins Read

Three malicious packages uploaded to the npm registry were discovered to harbor BeaverTail, a JavaScript downloader and information stealer associated…

Cyware and ECS Partner to Enhance Government Cybersecurity with Advanced Threat Intel Exchange

ISB Staff ReporterOctober 29, 20242 Mins Read

Cyware, a provider of threat intelligence management and cyber fusion solutions, has teamed up with ECS, a player in technology…

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics