top of page
Untitled design.png

Weekly INK

Each week we compile an advisory on the latest threats, trends and newsworthy topics from the cyber security industry affecting small and medium enterprises. Join our subscribers below and help us prevent cybersecurity breaches.

watermark4.png

Issue #88 - March 11, 2024

Windows SmartScreen Bypass Flaw Exploited to Drop DarkGate RAT

Source: Dark Reading

DarkGate malware operators have been exploiting a now-patched Windows SmartScreen bypass flaw through a phishing campaign that distributes fake Microsoft software installers to propagate the malicious code.




After Microsoft Suffers Mega-Breach, What Can Customers Do?

Source: Info Risk Today

What did Microsoft mean when it said that a nation-state hacking group has been "attempting to use secrets of different types" it stole from the technology giant's communications with its customers?




US govt probes if ransomware gang stole Change Healthcare data

Source: Bleeping Computer

The U.S. Department of Health and Human Services is investigating whether protected health information was stolen in a ransomware attack that hit UnitedHealthcare Group (UHG) subsidiary Optum, which operates the Change Healthcare platform, in late February.




Hackers Hiding Keylogger, RAT Malware in SVG Image Files

Source: Data Breach Today

Threat actors are hiding malware in SVG image files to evade detection and deliver ransomware, download a banking Trojan and distribute malware. Cofense Intelligence researchers in January observed a two-month campaign that used SVG files to deliver Agent Tesla Keylogger and XWorm RAT malware. The researchers advise security teams to remind users to watch for unexpected downloads upon opening an SVG file, the telltale sign of a compromise.




Critical Vulnerability Allows Access to QNAP NAS Devices

Source: Security Week

Critical-severity vulnerability could allow network attackers to access QNAP NAS devices without authentication. Taiwan-based QNAP Systems over the weekend announced patches for multiple vulnerabilities impacting its products, including a critical-severity bug leading to unauthenticated device access.



105 views

Commentaires


Help us Prevent Breaches.

We will never share or sell your information. Unsubscribe at any time.

Email: *

Received.

bottom of page