The NJCCIC observed a new iteration of ClickFix leading to the download of a recently discovered infostealer, MonsterV2. This infostealer can grab cryptocurrency wallets, account credentials, personally identifiable information such as Social Security numbers, and browser information.
In light of several recent natural disasters, the NJCCIC reminds users to exercise caution and conduct due diligence before donating funds. Cybercriminals often exploit the compassion and generosity of the public by conducting fraudulent schemes to steal funds.
Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged-on user.
A vulnerability has been discovered FortiWeb, which could allow for SQL injection. FortiWeb is a web application firewall (WAF) developed by Fortinet. It's designed to protect web applications and APIs from a wide range of attacks, including those targeting known vulnerabilities.
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs...
GreyNoise identified a notable surge in scanning activity targeting MOVEit Transfer systems beginning on May 27. On June 12, they then observed exploitation attempts against CVE-2023-34362 and CVE-2023-36934. While these critical vulnerabilities are several years old...
The NJCCIC continues to observe Telephone-Oriented Attack Delivery (TOAD) attacks. Threat actors begin the attack by performing reconnaissance on their targets, gathering information from various sources such as past data breaches, data purchased on the dark web, etc.
"Sneaky Log" is a sophisticated cybercrime group that emerged in late 2024, operating a Phishing-as-a-Service (PhaaS) kit called "Sneaky 2FA" which is designed to bypass two-factor authentication (2FA), also known as multi-factor authentication (MFA).
A Vulnerability has been discovered in Google Chrome. Successful exploitation of the the vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view...
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center (DC3), and the National Security Agency (NSA) released a Joint Fact Sheet strongly urging organizations to remain vigilant.
