It’s surprising to see how quickly attackers make use of new vulnerabilities in malware campaigns. Microsoft recently patched…
CVE-2019-11815: Experts discovered a privilege escalation vulnerability in the Linux Kernel
Red Hat engineers and experts discovered a memory corruption vulnerability in Linux kernel, which is basically a flaw…
Sophisticated Ransomware : “Katyusha”
For several months, Quick Heal Security Labs has been observing an increase in ransomware, we have found one more…
Obfuscated Equation Editor Exploit (CVE-2017-11882) spreading Hawkeye Keylogger
Cyber-attacks through phishing emails are increasing and generally, attackers use DOC embedded macros to infiltrate victim’s machine. Recently…
Malspam campaigns exploiting recent MS Office vulnerability ‘CVE-2017-11882’ – An Analysis by Quick Heal Security Labs
No wonder malspam campaigns are a major medium to spread malware. Previously, we have written about such campaigns…
An emerging trend of DDE based Office malware – an analysis by Quick Heal Security Labs
For the past few years, we have been seeing macro-based attacks through Object Linking Embedding (OLE)/Microsoft Office files. But, presently, attackers are…
CVE-2017-11826 – Microsoft Office Memory Corruption Vulnerability – an Alert by Quick Heal Security Labs
The recent zero-day vulnerability in Microsoft Office vulnerability CVE-2017-11826 enables attackers to perform a Remote Code Execution on…
CVE-2017-9805 | Apache Struts 2 Remote Code Execution Vulnerability – An analysis by Quick Heal Security Labs
A critical remote code execution vulnerability has been discovered in the popular web application framework Apache Struts, which…
CVE-2017-0199 – Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API
The newly discovered zero-day vulnerability (CVE-2017-0199) in Microsoft Office/WordPad is being actively exploited in the wild. Almost all…
Cosmos Bank website compromised with RIG Exploit Kit which drops Cerber Ransomware
Update: The incident has been taken care of by Cosmos Bank and its website (URL) is now clean and…
