[HackerNews] Hackers Using Squirrelwaffle Loader to Deploy Qakbot and Cobalt Strike

A new spam email campaign has emerged as a conduit for a previously undocumented malware loader that enables the attackers to gain an initial foothold into enterprise networks and drop malicious payloads on compromised systems.
“These infections are also used to facilitate the delivery of additional malware such as Qakbot and Cobalt Strike, two of the most common threats regularly observed

Source: Read More (The Hacker News)

You might be interested in …

[HackerNews] Experts Warn of Unprotected Prometheus Endpoints Exposing Sensitive Information

All posts, HackerNews

A large-scale unauthenticated scraping of publicly available and non-secured endpoints from older versions of Prometheus event monitoring and alerting solution could be leveraged to inadvertently leak sensitive information, according to the latest research. “Due to the fact that authentication and encryption support is relatively new, many organizations that use Prometheus haven’t yet enabled Source: Read […]

Read More

[BleepingComputer] Microsoft: Windows Server 2022 is now generally available

Microsoft has announced that Window Server 2022, a Long Term Servicing Channel (LTSC) release with ten years of support, is generally available starting today. […] Source: Read More (BleepingComputer)

Read More

[SecurityWeek] Critical Vulnerability Exposed Azure Cosmos DBs for Months

All posts, Security Week

Microsoft this week started notifying customers of a critical vulnerability in Azure Cosmos DB that could have provided attackers with administrative access to Cosmos DB instances. read more Source: Read More (SecurityWeek RSS Feed)

Read More