Tag: #malware
A recently patched security flaw in Microsoft Defender SmartScreen has been exploited to deliver malicious information stealers, including ACR Stealer, Lumma Stealer, and Meduza Stealer. This vulnerability, known as CVE-2024-21412 and rated with a CVSS score of 8.1, enables attackers to bypass SmartScreen protection and distribute harmful payloads. Microsoft resolved this high-severity vulnerability in its […]
In espionage, a honeypot is a tactic where spies use romantic relationships to extract secrets, a strategy often called a “honey trap.” In cybersecurity, a honeypot operates similarly by luring cybercriminals into a trap. It is a decoy system designed to attract hackers, providing valuable insights into their methods and deterring them from attacking real […]
Microsoft has addressed a critical Windows MSHTML zero-day vulnerability, tracked as CVE-2024-38112, which has been actively exploited in cyberattacks for eighteen months. This high-severity MHTML spoofing issue, fixed during the July 2024 Patch Tuesday security updates, allowed malicious scripts to bypass built-in security features. Haifei Li of Check Point Research discovered the vulnerability and reported […]