Lazarus APT, a sophisticated Korean-speaking threat actor, has been using its backdoor malware Manuscrypt since 2013 in numerous campaigns targeting various sectors. A recent incident involved a zero-day …
Tag: full
Short Summary:
The article provides a comprehensive analysis of the DarkComet Remote Access Trojan (RAT), detailing its capabilities, methods of infection, and the technical mechanisms it employs to evade detection …
Summary: Fortinet has issued critical security updates for FortiManager to address a vulnerability reportedly exploited by Chinese threat actors, though details and a CVE have not yet been publicly disclosed. …
Victim: Easterseals Country : US Actor: rhysida Source: Discovered: 2024-10-23 10:19:57.537928 Published: 2024-10-23 10:19:56.977084 Description : Easterseals Easterseals is leading the way to full equity, inclusion, and access through life-changing …
Short Summary:
ESET researchers have uncovered new Rust-based tools associated with the Embargo ransomware, first detected in June 2024. The toolkit includes MDeployer, a malicious loader, and MS4Killer, an EDR …
Grandoreiro is a Brazilian banking trojan that has been active since at least 2016. It enables threat actors to perform fraudulent banking operations by bypassing security measures of …
Summary: This research provides an update on the GHOSTPULSE malware, detailing its evolution from using the IDAT chunk of PNG files to embedding malicious payloads within the pixel structure of …
Summary: A new advanced persistent threat (APT) group named “IcePeony,” linked to China, has been conducting cyberattacks against government and academic institutions in countries like India, Mauritius, and Vietnam since …
Summary: Oracle’s October 2024 Critical Patch Update addresses 329 vulnerabilities, including five severe flaws in the WebLogic Server that could lead to system takeovers and data breaches. The most critical …
Bumblebee is a sophisticated downloader malware that cybercriminals use to infiltrate corporate networks and deliver various payloads, including Cobalt Strike beacons and ransomware. Discovered by the Google Threat …
Axiom Project Update Summary
Summary of Axiom Project Update VideoThe video discusses the recent massive update of the Axiom project, highlighting improvements and the increased support for various platforms. …
Victim: Phyton Biotech – Full Leak Country : DE Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/e1c359f3adfa9013cea01c331014d453ddb894b7cc928cbe54875d2f6fd67446/ Discovered: 2024-10-21 19:43:08.737624 Published: 2024-10-21 19:43:07.967576 Description : Business Services
Ransomware Victims – ALL Other Victims by …
Victim: Welding and Fabrication (Humble Mfg) – Full Leak Country : US Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/e26a25863929498d892fc5fa338f732d064a71fbc45f82e4c50ec65dd52d0911/ Discovered: 2024-10-21 19:44:08.432624 Published: 2024-10-21 19:44:07.653786 Description : Building Materials
Ransomware Victims – ALL …
Victim: Burgess Kilpatrick – Full Leak Country : CA Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/669e331cdac072ba51bd016e154e7fcfa6c41d7613cc0e74b34fb723687ab740/ Discovered: 2024-10-21 19:45:08.085078 Published: 2024-10-21 19:45:07.244439 Description : Accounting Services
Ransomware Victims – ALL Other Victims by …
Information stealers are malicious software used to collect sensitive data, particularly credentials, which are then sold on the dark web or used for further cyberattacks. In 2023, nearly …
The Monthly Intelligence Insights report by Securonix Threat Labs for July highlights significant cyber threats, including the activities of the Lazarus Group and Water Bakunawa, along with various …
Summary: The Cicada3301 ransomware group, identified in June 2024, has quickly gained notoriety for targeting critical infrastructure sectors globally, claiming 30 victims primarily in the U.S. and U.K. Their sophisticated …
This research article discusses the updates to the GHOSTPULSE malware, highlighting its evolution from using the IDAT chunk of PNG files to embedding its payload within the pixel …
Threat Actor: Epicor Software Corporation | Epicor Software Corporation Victim: 6,300 Clients | 6,300 Clients Price: N/A Exfiltrated Data Type: Personal details, full names, phone numbers
Key Points :
A…Threat Actor: Unknown | unknown Victim: Various German B2B Companies | German B2B Companies Price: Free (leaked data) Exfiltrated Data Type: B2B contact information (full names, email addresses, company details, …
Scammer Summary
The video discussesA fascinating tale of a con artist from the early 1900s who executed a complex scam involving Liberty Bonds, a bank, and clever manipulation to …
Cyber Security Career Roadmap Summary
Cyber Security Career Roadmap SummaryThe video discusses a comprehensive roadmap for individuals starting a career in cyber security, providing step-by-step guidance on courses, hands-on …
AWS Certification Tips Summary
Short SummaryThe video discusses five effective tips for achieving AWS certifications, sharing personal insights from the speaker’s journey that began with zero knowledge in April …
Victim: Open Range Field Services Country : US Actor: sarcoma Source: Discovered: 2024-10-19 08:43:32.016265 Published: 2024-10-19 08:43:31.034649 Description : Open Range Field Services Open Range Field Services, LLC was established …
Summary and Keypoints
SummaryThe video discusses a sophisticated hacking method targeting Google employees, where attackers simulate communications from coworkers to lure victims into clicking malicious links.
Key Points Hackers…Summary: Recent research reveals a sophisticated multi-stage malware attack by a Vietnamese threat actor targeting job seekers and digital marketing professionals, utilizing Quasar RAT for extensive system control. The attack …
Victim: Country Inn & Suites by Radisson Country : US Actor: everest Source: http://ransomocmou6mnbquqz44ewosbkjk3o5qjsl3orawojexfook2j7esad.onion/country-inn-suites-by-radisson/ Discovered: 2024-10-19 01:06:09.497991 Published: 2024-10-19 01:06:08.800980 Description : Thousands and thousands of client, ’s personal information,credit …
Victim: Neighbors Credit Union Country : US Actor: blacksuit Source: http://weg7sdx54bevnvulapqu6bpzwztryeflq3s23tegbmnhkbpqz637f2yd.onion/?id=e5CVOxgxe4itGVgZ Discovered: 2024-10-18 18:37:18.622875 Published: 2024-10-18 18:37:17.664143 Description : Neighbors Credit Union is a not-for-profit, full service financial institution where …
Summary: Cybercriminals have exploited 360 Total Security antivirus software to distribute a stealthy Rust-based malware called SSLoad, utilizing a deceptive loader named PhantomLoader to evade detection. This attack highlights the …
Short Summary:
The article discusses the activities of a new ransomware group dubbed “Crypt Ghouls,” which targets Russian businesses and government agencies. The group employs various tactics, techniques, and procedures …
Short Summary:
The article discusses a significant data breach involving nearly 1 million individuals’ information due to a BlackSuit ransomware attack on April 10, 2024. The compromised data included sensitive …
Video Summary
Video SummaryThe video discusses the importance of using variables in coding to ensure better functionality and ease of operation. It highlights that without variables, coding can become …
Cyble Research and Intelligence Labs (CRIL) has identified a sophisticated multi-stage malware attack targeting job seekers and digital marketing professionals, particularly those involved with Meta Ads. The attack …
Short Summary:
Evil Corp, a notorious pro-Russian hacktivist group led by Maksim Yakubets, has been involved in large-scale financial cyberattacks since 2007. Known for its sophisticated ransomware and banking fraud …
Threat Actor: Unknown | Unknown Victim: Jharkhand State Livelihood Promotion Society (JSLPS) | Jharkhand State Livelihood Promotion Society (JSLPS) Price: $5,000 Exfiltrated Data Type: Sensitive data related to rural development …
Short Summary:
The article discusses a warning issued by Gen Threat Labs regarding a new wave of the FakeUpdate campaign that utilizes compromised websites to deliver the WarmCookie backdoor. An …
Video Summary
Summary of the VideoThe video discusses how Android devices function as data collection tools for Google, gathering user location information to enhance traffic data. The creator of …
Summary: The transition to hybrid work models has revealed significant vulnerabilities in corporate print infrastructure, leading to increased security risks and data breaches. Organizations are urged to prioritize print security …
Threat Actor: People’s CyberArmy | People’s CyberArmy Victim: Nagoya Stock Exchange | Nagoya Stock Exchange Price: Not disclosed Exfiltrated Data Type: Website disruption data
Key Points :
The Nagoya Stock…Victim: Fractal ID Country : DE Actor: stormous Source: Discovered: 2024-10-16 22:47:36.892580 Published: 2024-10-16 21:45:40.000000 Description : THE FULL LEAK OF FRACTAL ID IS HERE ! web.fractal.id
We have extracted …
Summary and Key Points
Short SummaryThe video discusses the possibility of AI-generated works winning prestigious literary and entertainment awards, featuring insights from industry experts Chris Hay and Edward Calvesbert.…
IBM X-Force has identified Hive0147 as a prominent threat actor in the Latin American cyber landscape, particularly focusing on phishing and malware distribution. Recently, they have introduced a …
This article discusses the newly discovered China-nexus APT group named “IcePeony,” which has been active since at least 2023. They primarily target government agencies, academic institutions, and political …
Threat Actor: Unknown | unknown Victim: Center for Educational Measurement, Inc. | Center for Educational Measurement, Inc. Price: Not disclosed Exfiltrated Data Type: Personal, educational, and medical information
Key Points …
This article discusses a Golang ransomware that exploits AWS S3 for data theft while masquerading as LockBit to intimidate victims. The discovery of hard-coded AWS credentials in the …
The video discusses the Revinit ransomware, which is often referred to as the “police virus.” This malware extorts victims by displaying a fake police warning, claiming they have …
Short Summary:
The Sophos X-Ops team investigated a series of phishing attacks known as “quishing,” which utilize QR codes to trick employees into revealing sensitive information. The attackers sent emails …
Summary: A critical PHP Object Injection vulnerability (CVE-2024-9634) has been identified in the GiveWP WordPress donation plugin, affecting over 100,000 installations. This flaw allows unauthenticated attackers to execute arbitrary code, …