Remove .Net Remove Malware Remove SMB
article thumbnail

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021

Tenable

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021. International cybersecurity agencies issue a joint alert outlining the top malware strains of 2021. While malware is used for a variety of purposes, the government agencies point out that ransomware is a primary use case. Background. Description.

Malware 77
article thumbnail

Microsoft’s March 2022 Patch Tuesday Addresses 71 CVEs (CVE-2022-23277, CVE-2022-24508)

Tenable

This month’s update includes patches for: NET and Visual Studio. Windows SMB Server. Mass exploitation of that vulnerability was observed in the wild by the WannaCry ransomware , which remains one of the most destructive malware events to date. NET and Visual Studio Remote Code Execution Vulnerability. 3 Critical.

Windows 100
article thumbnail

Cybersecurity Snapshot: 6 Things That Matter Right Now

Tenable

Vulnerabilities associated with 2021’s top malware. Right after the Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) outlined the top malware of 2021, Tenable’s Security Response Team identified vulnerabilities associated with these malicious strains. CVE-2017-0144. CVE-2017-0199.

IoT 52
article thumbnail

MadoMiner Part 1 - Install

AlienVault

2018 seems to be a time for highly profitable cryptominers that spread over SMB file-shares. Following my analysis on ZombieBoy in July, I found a new malware sample that I’m calling MadoMiner. However, MadoMiner is much, much, larger, in terms of: The size of the malware; The amount of systems infected; and. Installation.

Malware 40
article thumbnail

Microsoft’s July 2021 Patch Tuesday Includes 116 CVEs (CVE-2021-31979, CVE-2021-33771)

Tenable

NET Runtime. Windows SMB. While Microsoft rates this as “Exploitation Less Likely,” it is important to consider that malware variants commonly look to escape VMs and infect the host machine, so patching this flaw should remain a priority despite Microsoft’s risk assessment. Microsoft Windows Codecs Library. OpenEnclave.

Windows 53
article thumbnail

ZombieBoy

AlienVault

Continuing the 2018 trend of cryptomining malware, I’ve found another family of mining malware similar to the “massminer” discovered in early May. CVE-2017-0143, SMB exploit. CVE-2017-0146, SMB exploit. exe obtains the ip of the victim by connecting to ip[dot]3222[dot]net. Installation.

Malware 40
article thumbnail

Cybersecurity Snapshot: Five Eyes Rank 2023’s Most Frequently Exploited CVEs, While CSA Publishes Framework for AI System Audits

Tenable

The report also looks at how trends like geopolitical cyberthreats, ransomware and infostealer malware are likely to develop in 2025. Governments should offer incentives to SMBs, such as tax breaks and subsidies, while larger businesses should reward their SMB partners that adopt MFA.

System 70