Tag

Netwrix Auditor

All articles tagged with #netwrix auditor

cybersecurity2 years ago•2 min saved

Rising TrueBot Malware Attacks Prompt Cybersecurity Agencies' Alarm

Cybersecurity agencies have issued warnings about the emergence of new variants of the TrueBot malware, which is now targeting companies in the U.S. and Canada. The malware exploits a critical vulnerability in the widely used Netwrix Auditor server, allowing attackers to gain unrestricted access to compromised systems. Linked with cybercriminal collectives Silence and FIN11, TrueBot is used to extract confidential data and disseminate ransomware, posing a significant threat to infiltrated networks. Organizations are advised to install necessary updates, enhance security protocols, be vigilant for signs of infiltration, and report any incidents to authorities.

via The Hacker News|

#cybersecurity #cybersecurity-agencies #data-breach

cybersecurity2 years ago•2 min saved

Rising TrueBot Malware Attacks Prompt Cybersecurity Agencies' Warning

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a warning about Truebot malware variants that are exploiting a critical remote code execution (RCE) vulnerability in Netwrix Auditor software. The attacks have targeted organizations in the United States and Canada. The vulnerability, tracked as CVE-2022-31199, allows unauthorized attackers to execute malicious code with SYSTEM user privileges. Truebot is associated with the Russian-speaking Silence cybercrime group and is used by the TA505 group to deploy Clop ransomware. The attackers also install the FlawedGrace Remote Access Trojan (RAT) and Cobalt Strike beacons for further malicious activities. Organizations are advised to apply patches, update Netwrix Auditor, and implement mitigation measures.

via BleepingComputer|

#cisa #cybersecurity #netwrix-auditor