New phishing attack uses Morse code to hide malicious URLs

Sunday, February 7th, 2021

A new targeted phishing campaign includes the novel obfuscation technique of using Morse code to hide malicious URLs in an email attachment. Samuel Morse and Alfred Vail invented morse code as a way of transmitting messages across telegraph wire. When using Morse code, each letter and number is encoded as a ...

Seven Common Microsoft Active Directory Misconfigurations that Adversaries Abuse

Sunday, February 7th, 2021

The modern IT organization has a wide variety of responsibilities and competing priorities. As a result, cybersecurity is often overlooked in favor of projects that have an immediate impact on business operations. Unfortunately, this operating model inevitably leads to unaddressed vulnerabilities and security misconfigurations in services and Active Directory. We’ll refer to ...

Proof-of-concept exploits published for the Microsoft-NSA crypto bug

Thursday, January 16th, 2020

Security researchers have published earlier today proof-of-concept (PoC) code for exploiting a recently-patched vulnerability in the Windows operating system, a vulnerability that has been reported to Microsoft by the US National Security Agency (NSA). The bug, which some have started calling CurveBall, impacts CryptoAPI (Crypt32.dll), the component that handles cryptographic operations ...

CCleaner Adds Data Collection Feature With No Way to Opt-Out

Thursday, August 2nd, 2018

Like many others, do you also believe that the popular system-cleaning tool CCleaner was performing well before Avast acquired the software from Piriform last year? If yes, then pop-up advertisements in the previous CCleaner software version was not the last thing you have to deal with. Avast has released a new version ...

FBI tells router users to reboot now to kill malware infecting 500k devices

Friday, May 25th, 2018

The FBI is advising users of consumer-grade routers and network-attached storage devices to reboot them as soon as possible to counter Russian-engineered malware that has infected hundreds of thousands devices. Researchers from Cisco’s Talos security team first disclosed the existence of the malware on Wednesday. The detailed report said the malware ...