VMware Patches Many Security Issues To Fix Certain Vulnerabilities

Does your company make use of VMware products? If so, be advised that a pair of researchers from Synacktiv recently reported a series of critical security flaws in VMware’s ESXi, Workstation and Fusion products. The recent discovery prompted the company to issue an emergency security patch to address those issues. The most serious of the bunch, which earned a 9.3 …

New Powerful Malware Is Targeting Windows-Based Machines

Researchers have discovered a devilishly clever new stain of malware currently in use by hackers around the world. The new strain is appropriately called “Lucifer,” and has been making life quite difficult for IT professionals managing Windows environments. The malware exploits critical vulnerabilities in Windows-based systems to launch DDoS attacks and install cryptojacking code. The latest version (2.0) of the …

Hackers Attacking Exchange Servers In New Warning From Microsoft

Recently, Microsoft’s Defender ATP Research Team issued guidance relating to defending against attacks that target Exchange servers. They are coming under increasing attack based on the latest Microsoft statistics, which show a marked increase in the use of web shells on on-premises Exchange servers. The company is currently tracking multiple ongoing attacks, some of which are using fileless techniques. That …

Intel Steps Up Game With CPU-Level Malware Protection

Tech companies both big and small are always looking for new ways to protect their customers from the threat of malware.While that’s not something that hardware vendors are known for, Intel has leapt into the fray with a recent announcement. Their planned “Tiger Lake” mobile processers will offer CPU-level malware protection features. Tom Garrison is Intel’s VP & General Manager …

This New Malware Is Hitting Exchange Servers To Steal Info

In late 2019, a new strain of malware called “Valak” was detected. In the six months that followed its initial discovery in the wild, more than 30 variants of the code were detected. Initially, Valak was classified as a simple loading program. As various groups have tinkered with the code, it has morphed into a much more significant threat, and …

Update NinjaForms In WordPress To Avoid Potential Hack

Are you one of the million-plus website owners making use of Ninja Forms for WordPress? If so, be aware that the company has recently patched a serious security flaw that allowed hackers to inject malicious code and take over websites. The attack is accomplished via a Cross-Site Request Forgery (CSRF) that leads to a Stored Cross-Site Script attack. All versions …

Illegal Movie Downloads Can Give Your Device Malware

If you’re like a lot of people stuck at home during the pandemic, you probably ran out of Netflix titles to watch a couple of weeks ago. As a result, researchers have noted a huge surge in traffic to torrent sites as more and more people are drawn to downloading movies illegally in search of additional entertainment. Hackers around the …

Agent Tesla Malware Steals WiFi Passwords From Infected Users

A few new variants of the Agent Tesla info-stealer malware have been spotted in the wild and should be on your radar if they’re not already. The new variants are more dangerous than previous versions of the malware. They now sport a module that enables them to scrape WiFi passwords from devices they invest. That will enable them to lurk …

Hackers Targeting WooCommerce Users To Steal Credit Card Information

WooCommerce is a WordPress-based, free plugin that makes it incredibly easy to sell just about anything online. With more than five million installations, it’s clearly a favorite on the web. Unfortunately, its popularity also makes it an easy target. Ben Martin and Willem de Groot are researchers with Sanguine Security. They found a new attack that specifically targets site owners …

Huge Increase In Phishing And Malware Attacks Using Coronavirus

Around the world, hundreds of millions of people are terrified of the current pandemic that’s raging. Most of those are currently self-quarantining at home and limiting their social contacts. Everyone is hungry for news and information. Sadly, hackers, scammers and other assorted criminals have wasted no time preying on this massive captive audience. According to data collected by Proofpoint, there …