Lazarus APT, a sophisticated Korean-speaking threat actor, has been using its backdoor malware Manuscrypt since 2013 in numerous campaigns targeting various sectors. A recent incident involved a zero-day …
Tag: full
Short Summary: The Prometei botnet, analyzed through a Managed Extended Detection and Response (MXDR) investigation, employs stealthy tactics to infiltrate systems primarily for cryptocurrency mining and credential theft. This analysis…
Read More
Short Summary:
The article provides a comprehensive analysis of the DarkComet Remote Access Trojan (RAT), detailing its capabilities, methods of infection, and the technical mechanisms it employs to evade detection …
Summary: Fortinet has issued critical security updates for FortiManager to address a vulnerability reportedly exploited by Chinese threat actors, though details and a CVE have not yet been publicly disclosed. …
Victim: Easterseals Country : US Actor: rhysida Source: Discovered: 2024-10-23 10:19:57.537928 Published: 2024-10-23 10:19:56.977084 Description : Easterseals Easterseals is leading the way to full equity, inclusion, and access through life-changing …
Short Summary:
ESET researchers have uncovered new Rust-based tools associated with the Embargo ransomware, first detected in June 2024. The toolkit includes MDeployer, a malicious loader, and MS4Killer, an EDR …
Short Summary
Read More
Grandoreiro is a Brazilian banking trojan that has been active since at least 2016. It enables threat actors to perform fraudulent banking operations by bypassing security measures of …
Summary: This research provides an update on the GHOSTPULSE malware, detailing its evolution from using the IDAT chunk of PNG files to embedding malicious payloads within the pixel structure of …
Summary: A new advanced persistent threat (APT) group named “IcePeony,” linked to China, has been conducting cyberattacks against government and academic institutions in countries like India, Mauritius, and Vietnam since …
Summary: Oracle’s October 2024 Critical Patch Update addresses 329 vulnerabilities, including five severe flaws in the WebLogic Server that could lead to system takeovers and data breaches. The most critical …
Short Summary
Read More
Bumblebee is a sophisticated downloader malware that cybercriminals use to infiltrate corporate networks and deliver various payloads, including Cobalt Strike beacons and ransomware. Discovered by the Google Threat …
Axiom Project Update Summary
Summary of Axiom Project Update VideoThe video discusses the recent massive update of the Axiom project, highlighting improvements and the increased support for various platforms. …
Victim: Phyton Biotech – Full Leak Country : DE Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/e1c359f3adfa9013cea01c331014d453ddb894b7cc928cbe54875d2f6fd67446/ Discovered: 2024-10-21 19:43:08.737624 Published: 2024-10-21 19:43:07.967576 Description : Business Services
Ransomware Victims – ALL Other Victims by …
Victim: Welding and Fabrication (Humble Mfg) – Full Leak Country : US Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/e26a25863929498d892fc5fa338f732d064a71fbc45f82e4c50ec65dd52d0911/ Discovered: 2024-10-21 19:44:08.432624 Published: 2024-10-21 19:44:07.653786 Description : Building Materials
Ransomware Victims – ALL …
Victim: Burgess Kilpatrick – Full Leak Country : CA Actor: monti Source: http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion/blog/669e331cdac072ba51bd016e154e7fcfa6c41d7613cc0e74b34fb723687ab740/ Discovered: 2024-10-21 19:45:08.085078 Published: 2024-10-21 19:45:07.244439 Description : Accounting Services
Ransomware Victims – ALL Other Victims by …
Short Summary
Read More
Information stealers are malicious software used to collect sensitive data, particularly credentials, which are then sold on the dark web or used for further cyberattacks. In 2023, nearly …
Short Summary
Read More
The Monthly Intelligence Insights report by Securonix Threat Labs for July highlights significant cyber threats, including the activities of the Lazarus Group and Water Bakunawa, along with various …
Summary: The Cicada3301 ransomware group, identified in June 2024, has quickly gained notoriety for targeting critical infrastructure sectors globally, claiming 30 victims primarily in the U.S. and U.K. Their sophisticated …
Short Summary
Read More
This research article discusses the updates to the GHOSTPULSE malware, highlighting its evolution from using the IDAT chunk of PNG files to embedding its payload within the pixel …
Threat Actor: Epicor Software Corporation | Epicor Software Corporation Victim: 6,300 Clients | 6,300 Clients Price: N/A Exfiltrated Data Type: Personal details, full names, phone numbers
Key Points :
A…Threat Actor: Unknown | unknown Victim: Various German B2B Companies | German B2B Companies Price: Free (leaked data) Exfiltrated Data Type: B2B contact information (full names, email addresses, company details, …
Scammer Summary
The video discussesA fascinating tale of a con artist from the early 1900s who executed a complex scam involving Liberty Bonds, a bank, and clever manipulation to …
Cyber Security Career Roadmap Summary
Cyber Security Career Roadmap SummaryThe video discusses a comprehensive roadmap for individuals starting a career in cyber security, providing step-by-step guidance on courses, hands-on …
AWS Certification Tips Summary
Short SummaryThe video discusses five effective tips for achieving AWS certifications, sharing personal insights from the speaker’s journey that began with zero knowledge in April …
Victim: Open Range Field Services Country : US Actor: sarcoma Source: Discovered: 2024-10-19 08:43:32.016265 Published: 2024-10-19 08:43:31.034649 Description : Open Range Field Services Open Range Field Services, LLC was established …
Summary and Keypoints
SummaryThe video discusses a sophisticated hacking method targeting Google employees, where attackers simulate communications from coworkers to lure victims into clicking malicious links.
Key Points Hackers…Summary: Recent research reveals a sophisticated multi-stage malware attack by a Vietnamese threat actor targeting job seekers and digital marketing professionals, utilizing Quasar RAT for extensive system control. The attack …
Victim: Country Inn & Suites by Radisson Country : US Actor: everest Source: http://ransomocmou6mnbquqz44ewosbkjk3o5qjsl3orawojexfook2j7esad.onion/country-inn-suites-by-radisson/ Discovered: 2024-10-19 01:06:09.497991 Published: 2024-10-19 01:06:08.800980 Description : Thousands and thousands of client, ’s personal information,credit …
Victim: Neighbors Credit Union Country : US Actor: blacksuit Source: http://weg7sdx54bevnvulapqu6bpzwztryeflq3s23tegbmnhkbpqz637f2yd.onion/?id=e5CVOxgxe4itGVgZ Discovered: 2024-10-18 18:37:18.622875 Published: 2024-10-18 18:37:17.664143 Description : Neighbors Credit Union is a not-for-profit, full service financial institution where …
Summary: Cybercriminals have exploited 360 Total Security antivirus software to distribute a stealthy Rust-based malware called SSLoad, utilizing a deceptive loader named PhantomLoader to evade detection. This attack highlights the …
Short Summary:
The article discusses the activities of a new ransomware group dubbed “Crypt Ghouls,” which targets Russian businesses and government agencies. The group employs various tactics, techniques, and procedures …
Short Summary:
The article discusses a significant data breach involving nearly 1 million individuals’ information due to a BlackSuit ransomware attack on April 10, 2024. The compromised data included sensitive …
Video Summary
Video SummaryThe video discusses the importance of using variables in coding to ensure better functionality and ease of operation. It highlights that without variables, coding can become …
Short Summary
Read More
Cyble Research and Intelligence Labs (CRIL) has identified a sophisticated multi-stage malware attack targeting job seekers and digital marketing professionals, particularly those involved with Meta Ads. The attack …
Short Summary:
Evil Corp, a notorious pro-Russian hacktivist group led by Maksim Yakubets, has been involved in large-scale financial cyberattacks since 2007. Known for its sophisticated ransomware and banking fraud …
Threat Actor: Unknown | Unknown Victim: Jharkhand State Livelihood Promotion Society (JSLPS) | Jharkhand State Livelihood Promotion Society (JSLPS) Price: $5,000 Exfiltrated Data Type: Sensitive data related to rural development …
Short Summary:
The article discusses a warning issued by Gen Threat Labs regarding a new wave of the FakeUpdate campaign that utilizes compromised websites to deliver the WarmCookie backdoor. An …
Video Summary
Summary of the VideoThe video discusses how Android devices function as data collection tools for Google, gathering user location information to enhance traffic data. The creator of …
Summary: The transition to hybrid work models has revealed significant vulnerabilities in corporate print infrastructure, leading to increased security risks and data breaches. Organizations are urged to prioritize print security …
Threat Actor: People’s CyberArmy | People’s CyberArmy Victim: Nagoya Stock Exchange | Nagoya Stock Exchange Price: Not disclosed Exfiltrated Data Type: Website disruption data
Key Points :
The Nagoya Stock…Victim: Fractal ID Country : DE Actor: stormous Source: Discovered: 2024-10-16 22:47:36.892580 Published: 2024-10-16 21:45:40.000000 Description : THE FULL LEAK OF FRACTAL ID IS HERE ! web.fractal.id
We have extracted …
Summary and Key Points
Short SummaryThe video discusses the possibility of AI-generated works winning prestigious literary and entertainment awards, featuring insights from industry experts Chris Hay and Edward Calvesbert.…
Short Summary
Read More
IBM X-Force has identified Hive0147 as a prominent threat actor in the Latin American cyber landscape, particularly focusing on phishing and malware distribution. Recently, they have introduced a …
Short Summary
Read More
This article discusses the newly discovered China-nexus APT group named “IcePeony,” which has been active since at least 2023. They primarily target government agencies, academic institutions, and political …
Threat Actor: Unknown | unknown Victim: Center for Educational Measurement, Inc. | Center for Educational Measurement, Inc. Price: Not disclosed Exfiltrated Data Type: Personal, educational, and medical information
Key Points …
Short Summary
Read More
This article discusses a Golang ransomware that exploits AWS S3 for data theft while masquerading as LockBit to intimidate victims. The discovery of hard-coded AWS credentials in the …
Short Summary
Read More
The video discusses the Revinit ransomware, which is often referred to as the “police virus.” This malware extorts victims by displaying a fake police warning, claiming they have …
Short Summary:
The Sophos X-Ops team investigated a series of phishing attacks known as “quishing,” which utilize QR codes to trick employees into revealing sensitive information. The attackers sent emails …
Summary: A critical PHP Object Injection vulnerability (CVE-2024-9634) has been identified in the GiveWP WordPress donation plugin, affecting over 100,000 installations. This flaw allows unauthenticated attackers to execute arbitrary code, …