Windows SmartScreen Bypass Flaw Exploited to Drop DarkGate RAT
Source: Dark Reading
DarkGate malware operators have been exploiting a now-patched Windows SmartScreen bypass flaw through a phishing campaign that distributes fake Microsoft software installers to propagate the malicious code.
After Microsoft Suffers Mega-Breach, What Can Customers Do?
Source: Info Risk Today
What did Microsoft mean when it said that a nation-state hacking group has been "attempting to use secrets of different types" it stole from the technology giant's communications with its customers?
US govt probes if ransomware gang stole Change Healthcare data
Source: Bleeping Computer
The U.S. Department of Health and Human Services is investigating whether protected health information was stolen in a ransomware attack that hit UnitedHealthcare Group (UHG) subsidiary Optum, which operates the Change Healthcare platform, in late February.
Hackers Hiding Keylogger, RAT Malware in SVG Image Files
Source: Data Breach Today
Threat actors are hiding malware in SVG image files to evade detection and deliver ransomware, download a banking Trojan and distribute malware. Cofense Intelligence researchers in January observed a two-month campaign that used SVG files to deliver Agent Tesla Keylogger and XWorm RAT malware. The researchers advise security teams to remind users to watch for unexpected downloads upon opening an SVG file, the telltale sign of a compromise.
Critical Vulnerability Allows Access to QNAP NAS Devices
Source: Security Week
Critical-severity vulnerability could allow network attackers to access QNAP NAS devices without authentication. Taiwan-based QNAP Systems over the weekend announced patches for multiple vulnerabilities impacting its products, including a critical-severity bug leading to unauthenticated device access.