Category: Threat Intelligence Alerts

We understand from a Crowdstrike report that on March 29, 2023, malicious activity was observed emanating from a legitimate, signed binary, 3CXDesktopApp — a softphone application from…

Microsoft’s March 2023 Patch Tuesday includes a fix for a privilege elevation vulnerability that has been seen actively exploited and affects all supported versions of Microsoft Outlook…

The United States Federal Bureau of Investigation (FBI) has revealed that the cost of investment scams between 2021 and 2022 has increased by 127%. Published…

Description: Researchers at ESET have recently advised on a new backdoor called ‘MQsTTang’ attributed to Chinese hacking group Mustang Panda, believed to be part of a continuing…

Description: Researchers at Fortinet’s FortiGuard labs have published an article detailing their observations of a new LockBit ransomware campaign. The LockBit ransomware campaign has been…

Description: Researchers at SEKOIA.IO have published an article detailing their discovery of a new information-stealing malware, advertised as Stealc by its developer. Beginning in January 2023, the…

Affected Devices: Description: Threat actors have been seen actively exploiting a critical vulnerability within Fortinet’s FortiWeb server, intending to create backdoors to compromised devices for…

Affected Systems: Description: A worldwide ransomware campaign targets unpatched VMware ESXI servers that are vulnerable to a remote code execution vulnerability discovered in 2021. The…

Description: Researchers at Sophos have published research detailing a new malware campaign using Microsoft OneNote documents (also called “Notebooks” by Microsoft) to spread malicious files through phishing…