SophosLabs Uncut – Page 7 – Computer Security Articles

A new Equation Editor exploit goes commercial, as maldoc attacks using it spike

July 18, 2019 admin CVE-2018-0798, doc, Equation Editor, exploit, maldoc, Microsoft Office, Microsoft Word, PDF, RTF, SophosLabs Uncut

Credit to Author: Gabor Szappanos| Date: Thu, 18 Jul 2019 16:00:18 +0000

Weaponized RTF documents adopt CVE-2018-0798, another Equation Editor vulnerability<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/ltjXsAajVFc” height=”1″ width=”1″ alt=””/>

Security Sophos

‘Oto Gonderici’ Excel formula injections target Turkish victims

July 11, 2019 admin Adwind RAT, CSV, FareIt RAT, formula injection, maldocs, malspam, Oto Gonderici, SophosLabs Uncut, spam, Turkey

Credit to Author: Gabor Szappanos| Date: Thu, 11 Jul 2019 16:05:59 +0000

A criminal relentlessly attacks Turkish targets with a novel maldoc trick, mostly staying under the radar<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/FKW687qu7ac” height=”1″ width=”1″ alt=””/>

Security Sophos

16 critical vulnerabilities, some being exploited, fixed in July, 2019 Windows updates

July 9, 2019 admin Corporate, CVE, CVE-2019-0880, CVE-2019-1132, Patch Tuesday, SophosLabs Uncut, Updates, windows

Credit to Author: Andrew Brandt| Date: Tue, 09 Jul 2019 22:15:50 +0000

Russian hackers allegedly have been exploiting two vulnerabilities in the course of attacks<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/iBWRguPLsjk” height=”1″ width=”1″ alt=””/>

Security Sophos

CVE-2019-0888: Use-After-Free in Windows ActiveX Data Objects (ADO)

July 9, 2019 admin ADO, CVE-2019-0888, exploit, SophosLabs Uncut, Use After Free, VBScript, Vulnerability, windows

Credit to Author: SophosLabs Offensive Security| Date: Tue, 09 Jul 2019 14:00:58 +0000

Details of the vulnerability we reported to Microsoft and was fixed in last month’s Patch Tuesday<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/-BE2g_tELic” height=”1″ width=”1″ alt=””/>

Security Sophos

BlueKeep PoC demonstrates risk of Remote Desktop exploit

July 1, 2019 admin SophosLabs Uncut

Credit to Author: Andrew Brandt| Date: Mon, 01 Jul 2019 08:00:50 +0000

If you’ve been deferring installing Microsoft’s May monthly update rollup, now’s a good time to get started – even if you’re still using XP for some reason<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/cnXPrOBUSg0″ height=”1″ width=”1″ alt=””/>

Security Sophos

Patch Tuesday squashes 89 bugs-including a SophosLabs find

June 11, 2019 admin adobe, Chakra, ChakraCore, Edge, Exploits, Flash Player, Hyper-V, microsoft, Patch Tuesday, polar bears, SandboxEscaper, SophosLabs Uncut, Updates, VBScript, Vulnerability, windows

Credit to Author: SophosLabs Offensive Security| Date: Tue, 11 Jun 2019 21:20:51 +0000

No bugs known to be exploited in the wild, but plenty of serious flaws that need updates<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/l4pze2u2S-k” height=”1″ width=”1″ alt=””/>

Security Sophos

Worms deliver cryptomining malware to web servers

May 30, 2019 admin Apache, Cryptojacking, cryptomining, Neutrino, Rat, Server, SophosLabs Uncut, Tomcat2, worm

Credit to Author: Vikas Singh| Date: Thu, 30 May 2019 13:00:08 +0000

An automated attack, targeting poorly-protected Apache Tomcat servers, turns enterprise hardware into a high-end cryptominer<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/NXX1H4BUrTk” height=”1″ width=”1″ alt=””/>

Security Sophos

Directed attacks against MySQL servers deliver ransomware

May 24, 2019 admin database, ddos, edge devices, ELF, gandcrab, malware, MySQL, ransomware, Rat, SophosLabs Uncut, sql, SQL Injection

Credit to Author: Andrew Brandt| Date: Fri, 24 May 2019 12:00:29 +0000

Someone is attacking internet-facing Windows database servers with GandCrab ransomware<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/Cjmfa68wtrI” height=”1″ width=”1″ alt=””/>