Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for...
The NJCCIC’s email security solution observed a new phishing campaign targeting Intuit login credentials. In this campaign, threat actors send an email impersonating accounting software Intuit QuickBooks. While the spoofed email address may appear to come from Intuit at first glance...
As the unofficial summer travel season is underway, many people will be busy with upcoming travel plans. Threat actors will also be busy performing reconnaissance, exploiting vulnerabilities, and capitalizing on travel websites and accounts. They continue to create spoofed websites...
Over the last week, the NJCCIC has received several incident reports from NJ residents regarding an SMS text phishing (SMiShing) scam impersonating the Department of Motor Vehicles (DMV). These messages claim that the user has an outstanding traffic ticket.
Commvault is monitoring cyber threat activity targeting their applications hosted in their Microsoft Azure cloud environment. Threat actors may have accessed client secrets for Commvault’s (Metallic) Microsoft 365 (M365) backup software-as-a-service (SaaS) solution, hosted in Azure.
The NJCCIC’s email security solution has observed an uptick in campaigns distributing 404 Keylogger infostealing malware. 404 Keylogger, also known as Snake Keylogger, is a malware-as-a-service (MaaS) that works both as a downloader and an information-stealing malware.
The NJCCIC continues to receive reports of scams targeting and impersonating business executives using social engineering tactics. Threat actors perform reconnaissance on organizations to target and impersonate business executives, including chief executive officers.
China is engaging in sustained cyber operations against US critical infrastructure. The NJCCIC's latest threat analysis report analyzes Chinese state-sponsored cyber campaigns targeting key sectors with the intent to disrupt vital services during a geopolitical conflict.
This Joint Cybersecurity Advisory highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies. This campaign includes those involved in the coordination, transport, and delivery of foreign assistance to Ukraine.
A vulnerability has been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the logged on user, depending on the privileges associated with the user.
