NewApp Digest
search bot

Black Basta

Windows SmartScreen Flaw Enabling Data Theft in Major Stealer Attack
Winsage
July 24, 2024

Windows SmartScreen Flaw Enabling Data Theft in Major Stealer Attack

The attack chain begins with a phishing email containing a malicious link that downloads an LNK file, which then executes an HTA script that decodes a payload. Two types of shellcode injectors are used to inject a final stealer into legitimate processes. The stealer deployed can target various applications and is tailored to specific regions. Implementing Microsoft's latest security updates is crucial to stay protected against the CVE-2024-21412 vulnerability.
Security End-Run: 'AuKill' Shuts Down Windows-Reliant EDR Processes
Winsage
July 17, 2024

Security End-Run: ‘AuKill’ Shuts Down Windows-Reliant EDR Processes

FIN7 developed AuKill, an anti-security tool designed to undermine endpoint security, which has been used by ransomware groups in their attacks. AuKill targets protected processes monitored by EDR solutions using time-travel debugging and Process Explorer drivers, causing crashes in targeted systems. Organizations are advised to strengthen their security solutions with anti-tampering protections to defend against kernel-mode attacks.
Urgent! Update Windows 10 PCs Before July 4th to Avoid Security Risks
Winsage
July 1, 2024

Urgent! Update Windows 10 PCs Before July 4th to Avoid Security Risks

- Some Windows 11 users are experiencing unexpected reboot loops after a recent update (KB5039302) - Microsoft advises affected users to perform recovery operations to restore normal operation - The issue primarily affects corporate machines with specific features, so home users are unlikely to be impacted - Microsoft continues to encourage users to upgrade to Windows 11 to ensure system security and compliance
Microsoft Windows Deadline—You Must Update Your PC By July 4
Winsage
June 29, 2024

Microsoft Windows Deadline—You Must Update Your PC By July 4

Some Windows 11 users are facing a restart loop issue after installing the June update KB5039302. This issue mainly affects enterprise machines running virtual machines tools and nested virtualization features, so home users are less likely to be impacted. The update is not mandatory and not a security update, so users should proceed with updating as usual. Windows 10 end-of-life is approaching on October 14, 2025, and users are urged to upgrade to Windows 11 to continue receiving security updates and technical support.
Search