Malicious ad for USPS fishes for banking credentials
We often think of malvertising as being malicious ads that push malware or scams, and quite rightly so these are...
Year: 2023
Ransomware review: June 2023
This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on...
Criminals target businesses with malicious extension for Meta’s Ads Manager and accidentally leak stolen accounts
Like all social media platforms, Facebook constantly has to deal with fake accounts, scams and malware. We have written about scams...
Ransomware review: July 2023
This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on...
FakeSG enters the ‘FakeUpdates’ arena to deliver NetSupport RAT
Over 5 years ago, we began tracking a new campaign that we called FakeUpdates (also known as SocGholish) that used...
HackerOne Bug Bounty Disclosure: b-bypass-two-factor-authentication-b-spaceboy
Company Name: b'LinkedIn' Company HackerOne URL: https://hackerone.com/linkedin Submitted By:b'spaceboy20'Link to Submitters Profile:https://hackerone.com/b'spaceboy20' Report Title:b'bypass two-factor authentication.'Report Link:https://hackerone.com/reports/1842183Date Submitted:01 August 2023...
HackerOne Bug Bounty Disclosure: b-apache-mod-negotiation-filename-bruteforcing-https-api-ratelimited-me-b-codeslayer
Company Name: b'RATELIMITED' Company HackerOne URL: https://hackerone.com/ratelimited Submitted By:b'codeslayer137'Link to Submitters Profile:https://hackerone.com/b'codeslayer137' Report Title:b'Apache mod_negotiation filename bruteforcing https://api.ratelimited.me'Report Link:https://hackerone.com/reports/475167Date Submitted:01...
HackerOne Bug Bounty Disclosure: b-smuggling-content-in-pr-with-refs-replace-in-github-b-inspector-ambitious
Company Name: b'GitHub' Company HackerOne URL: https://hackerone.com/github Submitted By:b'inspector-ambitious'Link to Submitters Profile:https://hackerone.com/b'inspector-ambitious' Report Title:b'Smuggling content in PR with refs/replace in...
HackerOne Bug Bounty Disclosure: b-operation-createorupdateso-lineupmutation-does-not-restrict-multiple-captains-b-fixenet
Company Name: b'Sorare' Company HackerOne URL: https://hackerone.com/sorare Submitted By:b'fixenet'Link to Submitters Profile:https://hackerone.com/b'fixenet' Report Title:b'Operation CreateOrUpdateSo5LineupMutation does not restrict multiple captains'Report...
Medusa Locker Ransomware Victim: Health Springs Medical Center
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Tracker de Colombia SAS
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Yunus Emre Institute Turkey
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: DTD Express
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Nini Collection Ltd (Nini’s Jewels)
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Cafe Britt
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Sun Pain Management
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: The Sinbad Club
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: St Landry Parish School Board
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Ace Micromatic Group
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Cybercriminals Renting WikiLoader to Target Italian Organizations with Banking Trojan
Organizations in Italy are the target of a new phishing campaign that leverages a new strain of malware called WikiLoader...
China’s APT31 Suspected in Attacks on Air-Gapped Systems in Eastern Europe
A nation-state actor with links to China is suspected of being behind a series of attacks against industrial organizations in...
What is Data Security Posture Management (DSPM)?
Data Security Posture Management is an approach to securing cloud data by ensuring that sensitive data always has the correct...
European Bank Customers Targeted in SpyNote Android Trojan Campaign
Various European customers of different banks are being targeted by an Android banking trojan called SpyNote as part of an...
Researchers Expose Space Pirates’ Cyber Campaign Across Russia and Serbia
The threat actor known as Space Pirates has been linked to attacks against at least 16 organizations in Russia and...
