Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.
CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day
Chinese APT ‘Bronze Starlight’ Uses Ransomware to Disguise Cyberespionage
A China-linked state-sponsored hacking group named Bronze Starlight was observed deploying various ransomware families to hide the true intent of its attacks.
Microsoft: Russian Cyber Spying Targets 42 Ukraine Allies
New ‘ToddyCat’ APT Targets High-Profile Entities in Europe, Asia
Kaspersky has detailed the activity of ToddyCat, a relatively new advanced persistent threat (ATP) actor that has been targeting high-profile entities in Europe and Asia for more than a year and a half.
False Air Raid Sirens in Israel Possibly Triggered by Iranian Cyberattack
Air raid sirens sounded in the Israeli cities of Jerusalem and Eilat on Sunday evening and it appears that they were triggered by a cyberattack, possibly conducted by Iranian hackers.
Volexity Blames ‘DriftingCloud’ APT For Sophos Firewall Zero-Day
Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks.
Sophisticated Android Spyware ‘Hermit’ Used by Governments
Security researchers at Lookout have analyzed a sophisticated Android spyware family that appears to have been created to serve nation-state customers.
Microsoft to Acquire Cyber Threat Analysis Company Miburo
Microsoft on Tuesday announced that it’s acquiring Miburo, a New York-based cyber threat analysis and research company that specializes in foreign information operations.
Miburo provides analysis, consulting and training services. The startup’s research team detects and attributes influence campaigns across over a dozen languages.
Adobe Plugs 46 Security Flaws on Patch Tuesday
Adobe’s security response team has pushed out a massive batch of patches to cover at least 46 vulnerabilities in a wide range of enterprise-facing software products.
As part of its scheduled Patch Tuesday release for June, Adobe warned of “critical” code execution flaws that expose both Windows and macOS users to malicious hacker attacks.
Report: L3 Emerges as Suitor for Embattled NSO Group
L3 Technologies, a U.S. government contractor that sells aerospace and defense technology, has emerged as a suitor for Israeli exploit merchant NSO Group.