IT Lines

What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in threat actors

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

19 Nov, 2020 apt, Attackers, China, Cicada, domain controller, Exploit, Government, Malware, Microsoft, Microsoft Active Directory, privilege escalation, Security News, threat actors, Vulnerability, zero day, zerologon 0 Comments

Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks. China-backed APT Cicada joins the list of threat actors leveraging the Microsoft Zerologon bug to stage attacks against their targets. In this case, victims are large and well-known Japanese organizations and their subsidiaries, . . . Read more

Apple Patches Bugs Tied to Previously Identified Zero-Days

06 Nov, 2020 Apple, google, Google Project Zero, iOS, iPadOS, iPhone, ipod, Mobile Security, Security, Security News, threat actors, Vulnerabilities, Windows, zero-day vulnerabilities 0 Comments

The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices. Apple has patched three previously identified zero-day vulnerabilities in its iPhone, iPod and iPad devices potentially related to a spate of related flaws recently discovered by the Google Project Zero team that also affect Google . . . Read more

Malspam Campaign Milks Election Uncertainty

05 Nov, 2020 2020 elections, E-mail, emotet, infostealer, malspam, Malware, Malwarebytes Labs, qbot, Research, Security, Security News, threat actors, Trojan, voters, voting 0 Comments

Emails try to lure victims with malicious documents claiming to have information about voting interference. Threat actors have taken advantage of the ongoing uncertainty around the 2020 U.S. election to unleash a new malspam campaign aimed at spreading the Qbot trojan. Criminals behind Qbot resurfaced the day after the election . . . Read more

Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug

30 Oct, 2020 apt, Attackers, Cybersecurity and Infrastructure Security Agency, Department of Homeland Security, domain controller, Exploit, Government, Hacks, Microsoft, Microsoft Active Directory, patch, privilege escalation, Security News, threat actors, Vulnerabilities, Vulnerability, zero day, zerologon 0 Comments

Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Threat attackers continue to exploit the Microsoft Zerologon vulnerability, a situation that’s been a persistent worry to both the company and the U.S. government over the last few months. Both on Thursday renewed . . . Read more

Office 365: A Favorite for Cyberattack Persistence

13 Oct, 2020 Cloud Security, COVID-19, cyber attacks, Microsoft, Office 365, Phishing, productivity suite, Ransomware, SaaS, Security News, Software as a Service, threat actors, Vectra AI, Vulnerabilities, Web Security 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict

07 Oct, 2020 Armenia, Azerbaijan, Cisco Talos, conflict, Dostoevsky, email, espionage, Government, macros, malicious documents, Malware, Malware analysis, microsoft word, nation state, PoetRAT, public sector, Security News, spearphishing, Spyware, The Brothers Karamazov, threat actors, war, Web Security 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

MFA Bypass Bugs Opened Microsoft 365 to Attack

15 Sep, 2020 Authentication, Azure, Cloud Computing, Cloud Security, COVID-19, mfa, multi-factor authentication, Office 365, Proofpoint, Security News, threat actors, Visual Studio, Vulnerabilities, Web Security, WS-Trust 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

IcedID Trojan Rebooted with New Evasive Tactics

18 Aug, 2020 COVID-19, evasion, IcedID, Juniper Networks, macros, Malware, new campaign, new variant, obfuscation, password protection, Phishing, Security, Security News, threat actors, Trojan, Web Security 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Hackers Dump 20GB of Intel’s Confidential Data Online

07 Aug, 2020 Cerberus Sentinel, chips, data breach, data leak, Hackers, Intel, intellectual property, KnowBe4, NDA, Processors, Security, Security News, third party, threat actors, tweet, twitter, Uncategorized 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.