Clik here to view.
Threat actors exploit Apache ActiveMQ flaw to deliver the Godzilla Web Shell
Researchers warn of a spike in attacks exploiting a now-patched flaw in Apache ActiveMQ to deliver the Godzilla web shell. Trustwave researchers observed a surge in attacks exploiting a now-patched...
View ArticleAkira ransomware attack on Tietoevry disrupted the services of many Swedish...
A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. The online services of multiple Swedish government...
View ArticleA TrickBot malware developer sentenced to 64 months in prison
The Russian national malware developer Vladimir Dunaev was sentenced to more than 5 years in prison for his role in the TrickBot operation. The Russian national Vladimir Dunaev (40) has been sentenced...
View ArticleClik here to view.
Medusa ransomware attack hit Kansas City Area Transportation Authority
Medusa ransomware gang claimed responsibility for the attack against the Kansas City Area Transportation Authority (KCATA). On January 23, 2023, the Kansas City Area Transportation Authority (KCATA)...
View ArticleCactus ransomware gang claims the Schneider Electric hack
Energy management and industrial automation firm Schneider Electric suffered a data breach after a Cactus ransomware attack. Schneider Electric is a multinational company that specializes in energy...
View ArticleThreat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware
Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. In early January 2024, software firm Ivanti reported that threat...
View ArticleMultiple malware used in attacks exploiting Ivanti VPN flaws
Mandiant spotted new malware used by a China-linked threat actor UNC5221 targeting Ivanti Connect Secure VPN and Policy Secure devices. Mandiant researchers discovered new malware employed by a...
View ArticleClik here to view.
PurpleFox malware infected at least 2,000 computers in Ukraine
The Computer Emergency Response Team in Ukraine (CERT-UA) reported that a PurpleFox malware campaign had already infected at least 2,000 computers in the country. The Computer Emergency Response Team...
View ArticleClik here to view.
Operation Synergia led to the arrest of 31 individuals
An international law enforcement operation, named Synergia, led to the arrest of 31 individuals involved in ransomware, banking malware, and phishing attacks. Operation Synergia was led by Interpol...
View ArticleU.S. Gov imposes visa restrictions on individuals misusing Commercial Spyware
The U.S. government imposes visa restrictions on individuals who are involved in the illegal use of commercial spyware. The U.S. State Department announced it is implementing a new policy to impose...
View ArticleCommercial spyware vendors are behind most zero-day exploits discovered by...
Google’s TAG revealed that Commercial spyware vendors (CSV) were behind most of the zero-day vulnerabilities discovered in 2023. The latest report published by Google Threat Analysis Group (TAG),...
View ArticleClik here to view.
China-linked APT Volt Typhoon remained undetected for years in US infrastructure
China-linked APT Volt Typhoon infiltrated a critical infrastructure network in the US and remained undetected for at least five years. US CISA, the NSA, the FBI, along with partner Five Eyes agencies,...
View ArticleUS offers $10 million reward for info on Hive ransomware group leaders
U.S. Government offers rewards of up to $10 million for information that could help locate, identify, or arrest members of the Hive ransomware group. The US Department of State announced rewards up to...
View ArticleClik here to view.
Black Basta ransomware gang hacked Hyundai Motor Europe
Black Basta ransomware gang claims the hack of the car maker Hyundai Motor Europe and the theft of three terabytes of their data. BleepingComputer reported that the Car maker Hyundai Motor Europe was...
View ArticleClik here to view.
macOS Backdoor RustDoor likely linked to Alphv/BlackCat ransomware operations
Bitdefender Researchers linked a new macOS backdoor, named RustDoor, to the Black Basta and Alphv/BlackCat ransomware operations. Researchers from Bitdefender discovered a new macOS backdoor, dubbed...
View ArticleClik here to view.
Raspberry Robin spotted using two new 1-day LPE exploits
Raspberry Robin continues to evolve, it was spotted using two new one-day exploits for vulnerabilities either Discord to host samples. Raspberry Robin is a Windows worm discovered by cybersecurity...
View ArticleClik here to view.
US Feds arrested two men involved in the Warzone RAT operation
The U.S. Justice Department (DoJ) seized the infrastructure that was used to sell the remote access trojan (RAT) Warzone RAT. The Justice Department announced the seizure of internet domains used to...
View ArticleClik here to view.
Researchers released a free decryption tool for the Rhysida Ransomware
Researchers discovered a vulnerability in the code of the Rhysida ransomware that allowed them to develop a decryption tool. Cybersecurity researchers from Kookmin University and the Korea Internet...
View ArticleClik here to view.
Ransomfeed – Third Quarter Report 2023 is out!
Maintainers behind the Ransomfeed platform have released Q3 Report 2023 including activities of 185 criminal groups operating worldwide. A comprehensive report delving into the intricate landscape of...
View ArticleBank of America customer data compromised after a third-party services...
Bank of America revealed that the personal information of some customers was stolen in a data breach affecting a third-party services provider. Bank of America began notifying some customers following...
View Article