Security News

Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers
2025-02-07 18:42

Software vendor Trimble is warning that hackers are exploiting a Cityworks deserialization vulnerability to remotely execute commands on IIS servers and deploy Cobalt Strike beacons for initial...

Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware
2025-02-07 05:19

Threat actors have been observed exploiting recently disclosed security flaws in SimpleHelp's Remote Monitoring and Management (RMM) software as a precursor for what appears to be a ransomware...

Kimsuky hackers use new custom RDP Wrapper for remote access
2025-02-06 18:55

The North Korean hacking group known as Kimsuky was observed in recent attacks using a custom-built RDP Wrapper and proxy tools to directly access infected machines. [...]

Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware
2025-02-06 17:50

Hackers are targeting vulnerable SimpleHelp RMM clients to create administrator accounts, drop backdoors, and potentially lay the groundwork for ransomware attacks. [...]

Suspected NATO, UN, US Army hacker arrested in Spain
2025-02-06 11:14

The Spanish National Police has arrested a hacker suspected of having breached national and international agencies (including the United Nation’s International Civil Aviation Organization and...

Hackers spoof Microsoft ADFS login pages to steal credentials
2025-02-05 18:41

A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication...

AMD fixes bug that lets hackers load malicious microcode patches
2025-02-05 18:30

​AMD has released mitigation and firmware updates to address a high-severity vulnerability that can be exploited to load malicious CPU microcode on unpatched devices. [...]

Spain arrests suspected hacker of US and Spanish military agencies
2025-02-05 15:37

The Spanish police have arrested a suspected hacker in Alicante for allegedly conducting 40 cyberattacks targeting critical public and private organizations, including the Guardia Civil, the...

How hackers target your Active Directory with breached VPN passwords
2025-02-04 15:01

As the gateways to corporate networks, VPNs are an attractive target for attackers. Learn from Specops Software about how hackers use compromised VPN passwords and how you can protect your...

North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS
2025-02-04 12:11

The North Korean threat actors behind the Contagious Interview campaign have been observed delivering a collection of Apple macOS malware strains dubbed FERRET as part of a supposed job interview...