A new malware campaign dubbed SQUIRRELWAFFLE by Cisco Talos is being spread through malicious spam that makes use of stolen email messages to add authenticity. Malicious spam (malspam) is unsolicited email that seeks to deliver a malicious payload either through a Microsoft Office attachment or by tricking the user into clicking a link in the […]
A javascript library downloaded millions of times each week was compromised in a supply chain attack which targeted the npm software registry. npm describes itself as the worlds largest software registry, and is used to host and share thousands of open source and private software projects. The javascript library in question is used by companies
Javascript supply chain attack hits millions of users Read More »
Microsoft has released patches for two security vulnerabilities in PowerShell which could allow a malicious script to circumvent the protection offered by Windows Defender Application Control. PowerShell is a cross-platform command-line shell used extensively in the administration of Windows and Azure servers. It is also popular with malicious users due to its power and flexibility
PowerShell Patches security flaws Read More »
LightBasin is a sophisticated threat actor that has established a persistent, long term presence in the heart of the network of at least 13 telecommunication companies around the world since 2019. According to research from Crowdstrike, the threat actor group known as UNC1945 or LightBasin, has been infiltrating the Linux and Solaris systems which run
LightBasin hacks telcos around the world Read More »
Three decades ago, Microsoft released Excel 4.0 with support for XLM macro files. A firm favourite with threat actors, XLM macros can be easily subverted to drop malware onto a victim’s computer through email campaigns that deliver malicious Office365 documents such as fake invoices and reports. Microsoft has now announced that XLM macros will be
Excel XLM Macros to be disabled by default – sometimes Read More »
The October security patch updates include fixes for critical flaws and zero-day vulnerabilities from Microsoft, Apple and Apache. Microsoft October Updates October’s security patch bundle from Microsoft includes fixes for four zero-day vulnerabilities, at least one of which is actively being exploited in the wild. Overall Microsoft fixes 70 vulnerabilities include the first inclusion of
October Security Updates Read More »
According to a new research paper, it is possible to trick a locked iPhone into authorising a contactless payment for a Visa card of any amount, if the Visa card is enabled for Express Transit (which can be on by default in the UK) Express Transit is a feature used by automated ticket gates on
ApplePay and Visa vulnerable to wireless skimming says research Read More »
A sophisticated Android based malware ring has stolen hundreds of millions of pounds from 10 million victims according to a new report. This Grifthorse trojan malware was used in over 200 Android apps available in the Google Play store. Details of the malware campaign are explained in a report from Zimperium Labs. According to the
Android Trojan hits 10 million victims Read More »
A flaw in the design of the Autodiscover protocol used to set-up email clients with Exchange Server can cause domain credentials to be sent in the clear to a server controlled by an attacker. The Microsoft Autodiscover protocol makes it easier for end users to configure their email client to connect to an Exchange Server
Microsoft Autodiscover protocol leaks domain credentials Read More »
The September update for Microsoft Exchange includes a new security feature for on-premises servers – they can now automatically mitigate new vulnerabilities just like the cloud versions used by Office 365. The last 12 months have not been fun for Exchange administrators with a series of high-profile vulnerabilities affecting on-premise Exchange servers resulting in the
Exchange can now automatically mitigate new vulnerabilities Read More »
SecureTeam Ltd,
Kemp House, 152 City Road,
London,
EC1V 2NX
10257784
GB 249480968
SecureTeam Ltd, Kemp House, 152 City Road,
London, EC1V 2NX
Mon – Fri: 09:00 – 17:00
Company Number: 10257784
VAT Registration No: GB 249480968
© SecureTeam 2023. All rights reserved.