Blog

Latest articles from SOCRadar

Cobalt Strike Rolls Out an Update for XSS Vulnerability
September 21, 2022

Cobalt Strike Rolls Out an Update for XSS Vulnerability

Cobalt Strike 4.7.1 out-of-band update fixed an issue in version 4.7 that the affected users reported. There was no workaround for the problem. A vulnerability revealed soon after the 4.7 release was also addressed by… Continue Reading

Highlights from SOCRadar Cyberwatch September Webinar
September 20, 2022

Highlights from SOCRadar Cyberwatch September Webinar

The first of SOCRadar's Cyberwatch webinar series took place yesterday. Cyberwatch September, which covers significant cyber incidents, emerging threat actors, the most exploited vulnerabilities, and major cyberattacks worldwide, aims to provide actionable intelligence to cyber… Continue Reading

Microsoft and VMware Warn of Ongoing Chromeloader Malware Campaign
September 20, 2022

Microsoft and VMware Warn of Ongoing Chromeloader Malware Campaign

Microsoft and VMware cautioned users about a widely spread Chromeloader malware campaign. The malware is said to have evolved and become more threatening. Microsoft has posted an alert on Twitter about an active click fraud campaign that utilized Chromeloader, attributed to… Continue Reading

September 20, 2022

The Week in Dark Web – 20 September 2022 – Data Leaks

Powered by DarkMirror™ Last week, threat actors continued selling leaked government and private organizations' databases. The most notable leaks are about the Indonesian government. These leaks seem like a part of the cyber-attack series targeting… Continue Reading

Diplomatic Crisis: Cyber Attack from Iran to Albania
September 19, 2022

Diplomatic Crisis: Cyber Attack from Iran to Albania

On September 7, Edi Rama -the Prime Minister of Albania- released a video message on the website of the Government of Albania. According to the video message, Prime Minister Rama requested all diplomatic, technical, and… Continue Reading

Why are Threat Actors Targeting Indonesia?
September 16, 2022

Why are Threat Actors Targeting Indonesia?

On September 3, Indonesia hiked fuel prices by 30%, stating that petrol and diesel prices are still low by world standards, but subsidies are unsustainable. On the other hand, in the background of political decisions… Continue Reading

Trend Micro Warnes for Actively Exploited RCE Flaw in Apex One
September 16, 2022

Trend Micro Warnes for Actively Exploited RCE Flaw in Apex One

Trend Micro recently released a patch for an actively exploited flaw in its endpoint security platform, Apex One. The security software provider published an advisory to report six vulnerabilities and advised their customers to apply the patches… Continue Reading

Hacker Breached Nearly Entire Uber IT System
September 16, 2022

Hacker Breached Nearly Entire Uber IT System

Transportation provider giant Uber is currently investigating a cyberattack. Following a network intrusion, multiple instances used by the company have been compromised. Uber announced on Twitter that they are working with law enforcement to address the issue.… Continue Reading

WordPress Sites Compromised Due to FishPig Supply Chain Attack
September 15, 2022

WordPress Sites Compromised Due to FishPig Supply Chain Attack

Numerous attack scenarios were observed targeting WordPress recently. These attacks abused WordPress plugins and tools to exploit websites. Threat actors infected FishPig's distribution server as part of a supply chain attack. The vendor's service integrates Adobe's… Continue Reading

Italy Threat Landscape Report: Skyrocketing Data Theft
September 15, 2022

Italy Threat Landscape Report: Skyrocketing Data Theft

Cyber risks have reached a level that all organizations cannot ignore. All governments worldwide are taking measures to take action against potential cyber-attacks. Italy is one of them. Announcing its National Cybersecurity Strategy for the… Continue Reading

Cybersecurity Reports Worth Checking Out in 2022
September 14, 2022

Cybersecurity Reports Worth Checking Out in 2022

Cyberthreats evolve every second, making it impossible to forecast the state in the future. We need insights to understand how important it is to maintain and strengthen the current security policies. Statistical reports help stay… Continue Reading

Loader Malware Emotet is Now Led by Quantum and BlackCat
September 14, 2022

Loader Malware Emotet is Now Led by Quantum and BlackCat

Emotet (also known as SpmTools) is a sophisticated, modular banking trojan. Emotetmostly serves as a downloader or dropper of other banking trojans. It is a loader-as-a-service (LaaS). It is mainly distributed by spam emails (malspam). Malicious… Continue Reading

Microsoft September Patch Tuesday Fixes Critical RCE Flaws and an Actively Exploited Zero Day
September 14, 2022

September Patch Tuesday Fixes Actively Exploited Zero Day and RCE Flaws

Microsoft's September Patch Tuesday update includes fixes for 63 vulnerabilities. There are five high-severity remote code execution vulnerabilities along with an actively exploited zero-day vulnerability.  Products that include the critical RCE vulnerabilities are as follows: … Continue Reading

Vote for SOCRadar at the Computing Security Awards 2022
September 13, 2022

Vote for SOCRadar at the Computing Security Awards 2022!

SOCRadar is proud to be among the finalists in the "Threat Intelligence Award" category this year at the Computing Security Awards 2022, where companies operating in different fields of the cybersecurity industry compete! Held since… Continue Reading

September 13, 2022

The Week in Dark Web – 13 September 2022 – Database Leaks

Powered by DarkMirror™ Threat actors mostly sold leaked databases last week. Among them were datasets that included important government data. Some Chinese, Italian, and Iranian companies were also among the victims. Find out if your… Continue Reading

High-Severity Firmware Flaws in HP Devices Yet to Be Patched
September 12, 2022

High-Severity Firmware Flaws in HP Devices Yet to Be Patched

Specific HP PC models' BIOS has flaws that could allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. Firmware vulnerabilities are especially harmful since they can enable long-term breaches that would… Continue Reading

Lampion Banking Malware Reappears in WeTransfer Phishing Attacks
September 12, 2022

Lampion Banking Malware Reappears in WeTransfer Phishing Attacks

Lampion malware operators use the free file-sharing platform WeTransfer to perform phishing attacks. This way, attackers can avoid security alerts since they are tricking users into downloading from a trustworthy service.  Threat actors used hacked… Continue Reading

Recent Attack Types Against Cloud Infrastructures
September 9, 2022

Recent Attack Types Against Cloud Infrastructures

Overview of Cloud Security Cloud security, in short, is the application of the best technology and best practices aimed at objectives such as data and brand protection, preventing disruption of services, and protecting the infrastructure within… Continue Reading

Patch Released for RCE Vulnerability in pfSense Firewall
September 9, 2022

Patch Released for RCE Vulnerability in pfSense Firewall

A critical vulnerability has been discovered in a plugin of Netgate's pfSense firewall. The flaw is tracked as CVE-2022-31814 and can expose the affected instances to unauthenticated remote code execution attacks. pfSense is an open-source firewall and router… Continue Reading

Cisco Released Patches for Vulnerabilities Affecting Several Products
September 8, 2022

Cisco Released Patches for Vulnerabilities Affecting Several Products

Three security issues impacting Cisco products were patched on Wednesday, including a high-severity vulnerability discovered in NVIDIA Data Plane Development Kit (MLNX DPDK) last month.  The vulnerability, identified as CVE-2022-28199 (CVSS 8.6), is due to improper error handling in the network… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo