Category: Recent Cyberscurity Events

Cat Links New Exploits, Recent Cyberscurity Events

Zero-Day Bug in MOVEit Massively Exploited

Posted on Zamrax

A critical zero-day vulnerability in Progress Software’s MOVEit Transfer app has been actively exploited by a threat group with likely links to financially motivated organizations. The exploit allows unauthorized access to the application’s database through an SQL injection flaw, enabling attackers to steal sensitive data uploaded by users. The attacks began prior to the vulnerability being disclosed, highlighting the urgency to patch the flaw. Promptly applying the patches and reviewing systems for signs of compromise is crucial to prevent data breaches and potential future ransomware attacks on affected organizations. … Continue readingZero-Day Bug in MOVEit Massively Exploited

Cat Links Recent Cyberscurity Events

Unveiling WINTAPIX: The Evasive Malware Taking System Privileges by Storm

Posted on Zamrax

Fortinet’s malware researchers have unveiled a powerful and evasive new malware called WINTAPIX. This sophisticated threat leverages a position-independent shellcode, Donut, to execute executables from memory and gain elevated system privileges. Operating within the kernel, it bypasses local security mechanisms, making it a critical component of multi-staged attacks. By establishing persistence in the Windows Registry and acting as a backdoor and proxy, WINTAPIX poses a significant risk to networks. Safeguarding against this threat requires implementing Driver Signature Enforcement to prevent unauthorized driver installations. … Continue readingUnveiling WINTAPIX: The Evasive Malware Taking System Privileges by Storm

Copyright © 2024 Dmitrii "Zamrax" Strizhkov | Signify Dark by WEN Themes