Commercial insurer CNA has started notifying customers that threat actors did have access to some personal data during a ransomware attack in March.
Source: Read More (SecurityWeek RSS Feed)
SunBurst: the next level of stealth blog.reversinglabs.com/blog/sunburst-the-next-level-of-stealth SolarWinds compromise exploited through sophistication and patience. ReversingLabs’ research into the anatomy of this supply chain attack unveiled conclusive details showing that Orion software build and code signing infrastructure was compromised. The source code of the affected library was directly modified to include malicious backdoor code, which was […]
Relying on a simple recipe that has proved successful time and time again, threat actors have deployed a malware campaign recently that used a Windows 11 theme to lure recipients into activating malicious code placed inside Microsoft Word documents. […] Source: Read More (BleepingComputer)
Minor updates to Autoruns and Sysmon were published: Autoruns v14.06 This Autoruns release fixes a crash happening for scheduled tasks containing spaces. Sysmon v13.30 This Sysmon update adds user fields for events, fixes a series of crash-causing bugs – for example with the Visual Studio debugger – and improves memory usage and management in […]