Cookie Settings

This website uses cookies and similar technologies to provide essential functionality and improve your experience. Some features, such as demo scheduling and chat support, require marketing cookies to function. By clicking "Accept All", you consent to all cookies. Alternatively, you can customize your preferences, but note that declining marketing cookies will limit certain website features.

Cyware Daily Threat Intelligence

Cyware Daily Threat Intelligence March 14, 2018 - Featured Image

Daily Threat Briefing Mar 14, 2018

Top Malware Reported in the Last 24 Hours

Dofoil outbreak
Multi-stage malware attacks are becoming very common--as is evident through the recent Dofoil outbreak. Most of the malicious files were written by MediaGet, a BitTorrent client classified as potentially unwanted application (PUA) process.

Malspam campaign delivers fake invoices
Hanictor, the malspam malware is in the news again for delivering emails with fake PayPal invoices. The campaign used the Hancitor downloader in order to deliver a fileless infection. The campaign used a variation of the hollowing technique to subvert hook protections.

Top Vulnerabilities Reported in the Last 24 Hours

Dell EMC DPA issue
A database account with a hardcoded password has been discovered in Dell EMC Data Protection Advisor (DPA). Versions prior to 6.3 Patch 159 and versions prior to 6.4 Patch 110 were found to be vulnerable. Users are advised to upgrade to Dell EMC Data Protection Advisor version 6.3 Patch 159 and version 6.4 Patch 110.

New Mozilla updates
Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. These updates fix a number of issues including 4 critical flaws. Users are advised to apply the updates immediately. Failing to do so, can expose vulnerable systems to hackers.

Adobe patches critical flaws
Adobe released new security patches that mitigate issues found in Dreamweaver, Flash Player and Connect products. Updates are included for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS in Adobe Flash Player 28.0.0.161 and earlier versions.

Related Threat Briefings