Conti Team One Splinter Group Resurfaces as Royal Ransomware with Callback Phishing Attacks
From September to December, we detected multiple attacks from the Royal ransomware group. In this blog entry, we discuss findings...
News
American nbsp identity and access management nbsp giant Okta revealed that that its private GitHub nbsp repositories were hacked this month
American identity and access management giant Okta revealed that that its private GitHub repositories were hacked this month.Okta revealed that its private GitHub repositories...
CyberNews researchers reported that Ecco a global shoe manufacturer and retailer exposed millions of documents
CyberNews researchers reported that Ecco, a global shoe manufacturer and retailer, exposed millions of documents. Original post @ https://cybernews.com/security/ecco-leaks-sensitive-data-for-months/Ecco, a...
IT giant Cisco is warning of threat actors exploiting many old vulnerabilities in attacks in the wild
IT giant Cisco is warning of threat actors exploiting many old vulnerabilities in attacks in the wild.Cisco has updated multiple...
US government is warning of business email compromise BEC attacks aimed at hijacking shipments of food products and ingredients
US government is warning of business email compromise (BEC) attacks aimed at hijacking shipments of food products and ingredients.The Federal...
Microsoft disclosed technical details of a vulnerability in Apple macOS that could be exploited by an attacker to bypass Gatekeeper
Microsoft disclosed technical details of a vulnerability in Apple macOS that could be exploited by an attacker to bypass Gatekeeper.Microsoft...
Researchers spotted a new variant of the Agenda ransomware which is written in the cross platform programming language Rust
Researchers spotted a new variant of the Agenda ransomware which is written in the cross-platform programming language Rust. Trend Micro...
Ukraines CERT UA revealed the national Delta military intelligence program has been targeted with a malware based attack
Ukraine’s CERT-UA revealed the national Delta military intelligence program has been targeted with a malware-based attack.On December 17, 2022, the...
The Glupteba botnet is back researchers reported a surge in infection worldwide after Google disrupted its operation in
The Glupteba botnet is back, researchers reported a surge in infection worldwide after Google disrupted its operation in 2021.In December...
German multinational industrial engineering and steel production company ThyssenKrupp AG was the target of a cyberattack
German multinational industrial engineering and steel production company ThyssenKrupp AG was the target of a cyberattack.German multinational industrial engineering and...
Researchers spotted a malicious package in the Python Package Index PyPI repository that impersonates a software development kit SDK for SentinelOne
Researchers spotted a malicious package in the Python Package Index (PyPI) repository that impersonates a software development kit (SDK) for...
US government is warning of business email compromise BEC attacks aimed at hijacking shipments of food products and ingredients
US government is warning of business email compromise (BEC) attacks aimed at hijacking shipments of food products and ingredients.The Federal...
IT giant Cisco is warning of threat actors exploiting many old vulnerabilities in attacks in the wild
IT giant Cisco is warning of threat actors exploiting many old vulnerabilities in attacks in the wild.Cisco has updated multiple...
Russia linked Gamaredon APT group targeted a large petroleum refining company in a NATO state this year amid the invasion of Ukraine
Russia-linked Gamaredon APT group targeted a large petroleum refining company in a NATO state this year amid the invasion of...
Diving into an Old Exploit Chain and Discovering 3 new SIP-Bypass Vulnerabilities
More than two years ago, a researcher, A2nkF demonstrated the exploit chain from root privilege escalation to SIP-Bypass up to...
Raspberry Robin Malware Targets Telecom, Governments
We found samples of the Raspberry Robin malware spreading in telecommunications and government office systems beginning September. The main payload...
Web3 IPFS Only Used for Phishing – So Far
We discuss the use of the InterPlanetary File System (IPFS) in phishing attacks. If you like the site, please consider...
US-CERT Bulletin (SB22-353):Vulnerability Summary for the Week of December 12, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Microsoft announced that a botnet dubbed MCCrash is launching distributed denial-of-service (DDoS) attacks against private Minecraft servers.
Microsoft announced that a botnet dubbed MCCrash is launching distributed denial-of-service (DDoS) attacks against private Minecraft servers. Microsoft spotted a...
Microsoft shares details for a Gatekeeper Bypass bug in Apple macOS
Microsoft disclosed technical details of a vulnerability in Apple macOS that could be exploited by an attacker to bypass Gatekeeper....
Telling users to ‘avoid clicking bad links’ still isn’t working
Telling users to ‘avoid clicking bad links’ still isn’t working Let's start with a basic premise: several of the established...
CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange
Summary At the end of September, GTSC reported an attack on critical infrastructure that took place in August. During the...
Malicious PyPI package posed as SentinelOne SDK to serve info-stealing malware
Researchers spotted a malicious package in the Python Package Index (PyPI) repository that impersonates a software development kit (SDK) for...
Improve Cyber Security Posture with 2023 Predictions
If a stronger cyber security posture is one of your organization’s new year’s resolutions, focus on what matters with these...
