[HackerNews] Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks

Microsoft on Wednesday disclosed details of a targeting phishing campaign that leveraged a now-patched zero-day flaw in its MSHTML platform using specially-crafted Office documents to deploy Cobalt Strike Beacon on compromised Windows systems.
“These attacks used the vulnerability, tracked as CVE-2021-40444, as part of an initial access campaign that distributed custom Cobalt Strike Beacon

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] G7 Tells Russia to Crack Down on Ransomware, Other Cybercrime

All posts, Security Week

At the latest Group of Seven (G7) summit, held June 11-13 in the UK, Western leaders called on Russia to take action against those who conduct ransomware attacks and other cybercrimes from within its borders. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SecurityWeek] Record Cryptocurrency Heist Valued at $600 Million

All posts, Security Week

A firm specializing in transferring cryptocurrency said Tuesday that hackers cracked its security, making off with a record-setting haul potentially worth $600 million. Poly Network put out a plea for the stolen Ethereum, BinanceChain and OxPolygon tokens to be shunned by traders running “wallets” for storing cryptocurrency. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SecurityWeek] OwnBackup Raises $240 Million at $3.35 Billion Valuation

All posts, Security Week

New Jersey-based data protection solutions provider OwnBackup on Tuesday announced raising $240 million in a Series E funding round at a valuation of $3.35 billion. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.