Fake Word Phishing Reveals Enterprise Blind Spot in Trusted Remote Access Tools
Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.
Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings.
PinTheft, a recently patched Linux privilege escalation vulnerability, now has a publicly available proof-of-concept (PoC) exploit that allows local attackers to gain root privileges on Arch Linux systems. [...]
AI-generated lookalike domains are now embedded inside the third-party scripts running on your web properties. Here's why your current stack can't see them, and what detection actually requires. Download the CISO Expert Guide to Typosquatting in the AI Era → TL;DR Typosqua…
The diagnostic imaging service provider Lumexa Imaging has been affected by a security incident at one of its vendors. FMRS […] The post Data Breaches Announced by Lumexa Imaging; FMRS Health Systems appeared first on The HIPAA Journal.
Banana RAT malware hidden in fake invoices and security update screens targets customers at 16 Brazilian banks stealing data with QR fraud.
Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week. The zero-day flaw, now tracked as CVE-2026-45585, carries a CVSS score of 6.8. It has been described as a BitLocker security feature bypass.…
GitHub has confirmed that roughly 3,800 internal repositories were breached after one of its employees installed a malicious VS Code extension. [...]
Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives. [...]
GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform's source code and internal organizations for sale on a cybercrime forum. "While we currently have no evidence of impac…
Um ataque que explorou uma vulnerabilidade desconhecida em roteadores empresariais da Huawei teria sido a causa de uma interrupção nacional nas redes de telecomunicações de Luxemburgo em 23 de julho de 2025, afetando serviços móveis, fixos e de emergência por mais de três horas, …
A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. [...]
Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing service to generate fraudulent code-signing certificates used by ransomware gangs and other cybercriminals. [...]
YellowKey, GreenPlasma, and MiniPlasma add to the growing list of vulnerabilities a security researcher disclosed over the past six weeks.
A equipe de desenvolvimento do Drupal anunciou a preparação de um patch para uma vulnerabilidade classificada como “altamente crítica”, cuja exploração por atacantes pode ocorrer em horas ou dias após a divulgação. A correção será publicada no dia 20 de maio, entre 17h e 21h UTC,…
A Microsoft anunciou nesta terça-feira a desarticulação de um serviço online que permitia a criminosos distribuir ransomware e outros tipos de malware disfarçados de programas legítimos. Batizado de Fox Tempest, o serviço funcionava como assinatura digital para malwares (MSaaS), …
Pela primeira vez em 19 anos, a exploração de vulnerabilidades tornou-se a principal porta de entrada para violações de dados, respondendo por 31% dos casos, segundo o 2026 Data Breach Investigations Report (DBIR), relatório da Verizon publicado hoje. O estudo, que analisou mais …
Engenheiros sociais direcionados a funcionários com privilégios, como equipes de TI, obtiveram credenciais do Microsoft Entra ID para roubar dados de ambientes de produção do Azure e do Microsoft 365. A Microsoft identificou o grupo como Storm-2949, cujo objetivo, segundo a empre…
The SHub Reaper stealer, which hides behind fake WeChat and Miro installers, marks a shift from ClickFix social engineering to Apple script-based execution.
A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate applications and administration features. [...]
A Microsoft anunciou nesta terça-feira uma ação global contra o Fox Tempest, grupo ligado a um esquema de “Malware Signing-as-a-Service” (MSaaS) que ajudava cibercriminosos a distribuir malwares disfarçados de softwares legítimos. Vazamento de dados: como uma empresa deve resp…