Spoofing - Geek Feed

MikroTik botnet uses misconfigured SPF DNS records to spread malware

January 16, 2025January 16, 2025 geekfeed0Tagged Botnet, DNS, MalSpam, MikroTik, MikroTik botnet, Spoofing

A newly discovered botnet of 13,000 MikroTik devices uses a misconfiguration in domain name server records to bypass email protections and deliver malware by spoofing roughly 20,000 web domains. The threat actor takes advantage of an improperly configured DNS record for the sender policy framework (SPF) used for listing all the servers authorized to send emails […]

3 mins read

Microsoft Exchange adds warning to emails abusing spoofing flaw

November 13, 2024November 13, 2024 geekfeed0Tagged email, emails abusing, Microsoft Exchange, phishing, Spoofing, vulnerability, Warning

Microsoft has disclosed a high-severity Exchange Server vulnerability that allows attackers to forge legitimate senders on incoming emails and make malicious messages a lot more effective. The security flaw (CVE-2024-49040) impacts Exchange Server 2016 and 2019, and was discovered by Solidlab security researcher Vsevolod Kokorin, who reported it to Microsoft earlier this year. “The problem is that […]

2 mins read

New Windows Themes zero-day gets free, unofficial patches

October 31, 2024October 31, 2024 geekfeed0Tagged 0patch, Micropatch, NTLM, Spoofing, windows, windows 10, windows 11, Windows Themes, Windows zero day, Zero-Day

Free unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target’s NTLM credentials remotely. NTLM has been extensively exploited in NTLM relay attacks, where threat actors force vulnerable network devices to authenticate against servers under their control, and pass-the-hash attacks, where they exploit system vulnerabilities or deploy malicious […]

4 mins read

Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws

October 10, 2024October 10, 2024 geekfeed0Tagged 0day, Denial of Service, Elevation of Privilege, Information Disclosure, microsoft, microsoft patch, Patch Tuesday, Remote Code Execution, Security Feature Bypass, Security Update, Spoofing, vulnerability, windows, windows update, Zero-Day

Microsoft October 2024 Patch Tuesday, which includes security updates for 118 flaws, including five publicly disclosed zero-days, two of which are actively exploited. This Patch Tuesday fixed three critical vulnerabilities, all remote code execution flaws. The number of bugs in each vulnerability category is listed below: This count does not include three Edge flaws that […]

15 mins read

Unexplained ‘Noise Storms’ flood the Internet, puzzle experts

September 20, 2024September 20, 2024 geekfeed0Tagged Background Noise, cybersecurity, ICMP packets, Internet, internet traffic, LOVE, Noise Storms, puzzle experts, Spoofing

Internet intelligence firm GreyNoise reports that it has been tracking large waves of “Noise Storms” containing spoofed internet traffic since January 2020. However, despite extensive analysis, it has not concluded its origin and purpose. These Noise Storms are suspected to be covert communications, DDoS attack coordination signals, clandestine command and control (C2) channels of malware operations, or the result […]

2 mins read