New UAC-0056 activity: There’s a Go Elephant in the room
In late March, the cyber espionage group UNC2589 also known as SaintBear launched a spear phishing campaign targeting several entities in Ukraine. In this blog we review this attack and the intended payloads.
The post New UAC-0056 activity: There’s a Go Elephant in the room appeared first on Malwarebytes Labs.
Auto-Elevate – Escalate From A Low-Integrity Administrator Account To NT AUTHORITY\SYSTEM Without An LPE Exploit By Combining A COM UAC Bypass And Token Impersonation
This tool demonstrates the power of UAC bypasses and built-in features of Windows. This utility auto-locates winlogon.exe, steals and impersonates it’s process TOKEN, and spawns a new SYSTEM-level process with the stolen token. Combined with UAC bypa…
Globant suffers network breach due to LAPSUS$ compromise
LAPSUS$ is a young group believed to be ran by teenagers. In their latest heist, they leaked data from Globant, a software firm.
The post Globant suffers network breach due to LAPSUS$ compromise appeared first on Malwarebytes Labs.
Update now! Apple patches two zero-day vulnerabilities that may have been actively exploited
Apple released security updates for macOS Monterey 12.3.1, iOS 15.4.1, iPadOS 15.4.1, tvOS 15.4.1, and watchOS 8.5.1 patching 2 vulnerabilities that may have been exploited in the wild.
The post Update now! Apple patches two zero-day vulnerabilities that may have been actively exploited appeared first on Malwarebytes Labs.
Hive ransomware impacts California non-profit health organisation
We look at a developing story where Hive ransomware has heavily impacted a non-profit healthcare organisation.
The post Hive ransomware impacts California non-profit health organisation appeared first on Malwarebytes Labs.
Microsoft doubles down on its Android + Windows efforts in latest reorg
A new ‘Microsoft Android’ division houses Duo, SwiftKey, Launcher, and more.
What you need to know
Microsoft is moving several key Android teams and products into a new org…
Click to expand…
Read more
What are the best router settings for minimal latency / ping?
I recently have been looking for the best router settings so I no longer have to suffer with lag spikes, etc. I am using a spectrum router so some settings might be different. If you have any good…
Read more
Russian Wiper Malware Likely Behind Recent Cyberattack on Viasat KA-SAT Modems
The cyberattack aimed at Viasat that temporarily knocked KA-SAT modems offline on February 24, 2022, the same day Russian military forces invaded Ukraine, is believed to have been the consequence of wiper malware, according to the latest research from…
EU draft law adds security checks to all crypto transactions
The European Parliament has taken the first steps for new legislation against money-laundering that covers cryptocurrency transactions, which are an important part of illicit activities today…
Click to expand…
Read more