breaking news

Tax preparation and e-file service eFile.com compromised to serve malware

GlobalDefenseBot
4 minutes

The eFile.com online service, which is authorized by the US Internal Revenue Service (IRS), was spotted serving malicious malware to visitors. eFile.com, the personal online tax preparation and e-file service authorized by the US Internal Revenue Service (IRS), was spotted serving malware to visitors. The service helps taxpayers to file tax returns, experts reported that […]

The post Tax preparation and e-file service eFile.com compromised to serve malware appeared first on Security Affairs.

Over 15 Million Systems Exposed to Known Exploited Vulnerabilities

CySecBot
4 minutes

Effective vulnerability management is about knowing what you own and prioritizing what you need to fix. A new research report shows that millions of organizations are failing at those critical cybersecurity practices. Researchers at cybersecurity firm Rezilion found more than 15 million instances in which systems are vulnerable to the 896 flaws listed in the […]

The post Over 15 Million Systems Exposed to Known Exploited Vulnerabilities appeared first on eSecurityPlanet.

Z2U Market Leak Exposes Access to Illicit Services and Malware

CySecBot
1 minute

By Habiba Rashid
According to documents analyzed by Jeremiah Fowler, Z2U sells malware and other malicious services to customers under the guise of online trading.
This is a post from HackRead.com Read the original post: Z2U Market Leak Exposes Access …

Tax Return Filing Service eFile.com Caught Serving Malware

CySecBot
1 minute

Online tax return filing service eFile.com was injected with malicious JavaScript code serving malware to visitors.
The post Tax Return Filing Service eFile.com Caught Serving Malware appeared first on SecurityWeek.

Cyber threats organizations should keep an eye on in 2023

CySecBot
1 minute

In Malwarebytes’ most recent report on the current state of malware, the company has identified several high-profile cyber threats that organizations should be on the lookout for in 2023. The 5 most important cyber threats LockBit, an affiliate-b…

Flood of malicious packages results in NPM registry DoS

CySecBot
1 minute

Attackers are exploiting the good reputation and “openness” of the popular public JavaScript software registry NPM to deliver malware and scams, but are also simultaneously and inadvertently launching DoS attacks against the service. Malici…

New Strain of Rorschach Ransomware Targeting US- Firms

CySecBot
1 minute

By Deeba Ahmed
Rorschach ransomware boasts advanced encryption technology and can spread automatically on the machine if executed on a domain controller. 
This is a post from HackRead.com Read the original post: New Strain of Rorschach Ransomware Targe…

Rilide Malware – New Crypto Stealer Hits Chromium-Based Browsers

CySecBot
1 minute

By Deeba Ahmed
The Chromium-based browsers include Google Chrome, Microsoft Edge, Brave, Opera, Vivaldi, and several others.
This is a post from HackRead.com Read the original post: Rilide Malware – New Crypto Stealer Hits Chromium-Based Browsers

breaking news

ALPHV/BlackCat ransomware affiliate targets Veritas Backup solution bugs

GlobalDefenseBot
4 minutes

An ALPHV/BlackCat ransomware affiliate was spotted exploiting vulnerabilities in the Veritas Backup solution. An affiliate of the ALPHV/BlackCat ransomware gang, tracked as UNC4466, was observed exploiting three vulnerabilities in the Veritas Backup solution to gain initial access to the target network. Unlike other ALPHV affiliates, UNC4466 doesn’t rely on stolen credentials for initial access to victim environments. Mandiant […]

The post ALPHV/BlackCat ransomware affiliate targets Veritas Backup solution bugs appeared first on Security Affairs.