Current:Home > Finance'Criminals are preying on Windows users': Software subject of CISA, cybersecurity warnings-DB Wealth Institute B2 Expert Reviews
'Criminals are preying on Windows users': Software subject of CISA, cybersecurity warnings
View Date:2024-12-23 21:56:13
The U.S. Cybersecurity and Infrastructure Security Agency added a vulnerability in Microsoft's Windows 10 software to a list of exploited security weak spots.
CISA said that "Microsoft COM for Windows contains a deserialization of untrusted data vulnerability that allows for privilege escalation and remote code execution," in a listing added to the agency's Known Exploited Vulnerability Catalog Monday.
The listing advised users to stop using software or utilize a patch through Windows.
CISA said that it did not know if the vulnerability, titled CVE-2018-0824, had been used in a ransomware campaign but a CISCO Talos report released Thursday said that a Chinese hacking group utilized the vulnerability in an attack on a Taiwanese government research center. The report said the center was, "likely compromised."
Second organization issues Windows warning
CISA was not the only organization to issue a warning to Windows users Monday.
"Criminals are preying on Windows users yet again, this time in an effort to hit them with a keylogger that can also steal credentials and take screenshots," enterprise technology news site the Register reported Monday.
The outlet reported that FortiGuard Labs, a threat intelligence agency, found an uptick in malware attacks with SnakeKeylogger. The malware is known to steal credentials and record keystrokes in infected machines.
It was originally sold on a subscription basis on Russian crime forums and became a major threat in 2020, according to the Register.
In 2022 Check Point Research, a cyber security firm, warned that the malware, "is usually spread through emails that include docx or xlsx attachments with malicious macros," and through PDF files.
The warnings come on the heels of the "Crowdstrike outage" in July, where a defective software update rendered devices using Windows software useless for hours.
veryGood! (5)
Related
- 15 new movies you'll want to stream this holiday season, from 'Emilia Perez' to 'Maria'
- When is Opening Day? 2024 MLB season schedule, probable pitchers
- Time, money, lost business are part of hefty price tag to rebuild critical Baltimore bridge
- Sister Wives' Hunter Brown Shares How He Plans to Honor Late Brother Garrison
- Maryland man wanted after 'extensive collection' of 3D-printed ghost guns found at his home
- Diddy investigated for sex trafficking: A timeline of allegations and the rapper's life, career
- Jake Paul, Mike Tyson take their fight to social media ahead of Netflix bout
- Feds say California’s facial hair ban for prison guards amounts to religious discrimination
- Bull doge! Dogecoin soars as Trump announces a government efficiency group nicknamed DOGE
- NFL approves significant changes to kickoffs, hoping for more returns and better safety
Ranking
- Shawn Mendes Confesses He and Camila Cabello Are No Longer the Closest
- 5 takeaways from the abortion pill case before the U.S. Supreme Court
- Stock market today: Asian shares are mixed after Wall Street retreats from all-time highs
- Here's 5 things to know about the NFL's new kickoff rule
- Black and Latino families displaced from Palm Springs neighborhood reach $27M tentative settlement
- Texas’ migrant arrest law is on hold for now under latest court ruling
- Travelers through Maine’s biggest airport can now fly to the moon. Or, at least, a chunk of it
- Christina Applegate Battling 30 Lesions on Her Brain Amid Painful MS Journey
Recommendation
-
Watch out, Temu: Amazon Haul, Amazon's new discount store, is coming for the holidays
-
Struggling private Birmingham-Southern College in Alabama says it will close at end of May
-
Court tosses Republican Pennsylvania lawmakers’ challenge of state, federal voter access actions
-
One month out, New Orleans Jazz Fest begins preparations for 2024 event
-
'He's driving the bus': Jim Harbaugh effect paying dividends for Justin Herbert, Chargers
-
Meta ban on Arabic word used to praise violence limits free speech, Oversight Board says
-
Kansas moves to join Texas and other states in requiring porn sites to verify people’s ages
-
MLB power rankings: Which team is on top for Opening Day 2024?