Displaying items by tag: PowerShell

Security vendor WatchGuard Technologies has published research showing that more than 90% of malware arrives through HTTPS-encrypted connections.

Published in Security

Old sometimes is not gold, especially when it comes to ancient versions of ColdFusion running on versions of Windows that have reached their end-of-life, as the global security firm Sophos has demonstrated through its research into a server that was taken over by unknown actors using the Cring ransomware.

Published in Security

Malware authors are crafting their wares to bypass scans on Windows systems altogether, using a number of tricks to avoid being put under the microscope by Microsoft's Antimalware Scan Interface, the global security firm Sophos claims.

Published in Security

Global security vendor Sophos claims to have discovered a new strain of Windows ransomware which is the final executable payload in a manual attack where every other stage is delivered through a PowerShell script. One of the entry points was an on-premise Microsoft Exchange Server installation.

Published in Security

Global security provider Sophos has discovered a Microsoft Exchange Server hosting a malicious monero cryptominer which is aimed at other Exchange servers.

Published in Security

A relatively new strain of Windows ransomware known as Cring has been noticed attacking Fortigate VPN servers using a vulnerability which has the reference CVE-2018-13379.

Published in Security

Windows ransomware known as LockBit, which made its presence known in 2019, has now matured and is using novel ways to escalate privileges by bypassing the User Account Control feature on Windows systems.

Published in Security

Security firm Kaspersky has released details about a threat group it has named DeathStalker that appears to have just one function: collecting sensitive business information. The group appears to attack only Windows systems.

Published in Security

The tactics employed by cyber criminals who deploy Windows ransomware on systems for monetary gain have changed over the last 10 months in order to evade detection by endpoint security that has improved markedly, a researcher from the global security firm Sophos claims.

Published in Security
Thursday, 14 September 2017 10:29

Microsoft patches Office flaw used to spread spyware

Microsoft has issued a patch to fix a flaw in its Office suite that was being used to spread spyware known as FINSPY.

Published in Security
Friday, 09 December 2016 09:29

Windows PowerShell threats on the rise: Symantec

Malicious scripts written using the Windows PowerShell framework are on the increase, Symantec has warned after a study by researchers found that 95% of analysed scripts fell into this category.

Published in Security

Microsoft has announced that Windows PowerShell will be released as an open source program and has built an binary alpha version that will run on some Linux distributions and OS X.

Published in Open Source

PowerShell, a ubiquitous technology that is part of the Windows environment, has become an ideal way for attackers to hide their presence and activities. Its ability to dynamically load and execute code without touching the file system makes it especially difficult to secure. Malware authors know this and are increasingly exploiting that capability.

Published in Security

Microsoft has made a contribution of between US$25,000 and US$50,000 to the OpenBSD Foundation which supports OpenBSD and related projects such as OpenSSH, OpenBGPD, OpenNTPD, OpenSMTPD, LibreSSL, and mandoc.

Published in Open Source

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments