Between crossovers – Do threat actors play dirty or desperate? In our dataset of over 11,000 victim organizations that have experienced a Cyber Extortion / Ransomware attack, we noticed that… Read More »Ransomware Double-Dip: Re-Victimization in Cyber Extortion
Microsoft has revealed that North Korea-linked state-sponsored cyber actors has begun to use artificial intelligence (AI) to make its operations more effective and efficient. “They are learning to use tools… Read More »Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
A new information stealer has been found leveraging Lua bytecode for added stealth and sophistication, findings from McAfee Labs reveal. The cybersecurity firm has assessed it to be a variant… Read More »New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth
Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild. “CrushFTP v11… Read More »Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
Palo Alto Networks has shared more details of a critical security flaw impacting PAN-OS that has come under active exploitation in the wild by malicious actors. The company described the vulnerability, tracked as CVE-2024-3400 (CVSS… Read More »Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack
Technology, research, and government sectors in the Asia-Pacific region have been targeted by a threat actor called BlackTech as part of a recent cyber attack wave. The intrusions pave the way for an… Read More »BlackTech Targets Tech, Research, and Gov Sectors New ‘Deuterbear’ Tool
Threat actors behind the Akira ransomware group have extorted approximately $42 million in illicit proceeds after breaching the networks of more than 250 victims as of January 1, 2024. “Since… Read More »Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers
Attackers are increasingly making use of “networkless” attack techniques targeting cloud apps and identities. Here’s how attackers can (and are) compromising organizations – without ever needing to touch the endpoint or conventional networked systems and services. … Read More »How Attackers Can Own a Business Without Touching the Endpoint
Government entities in the Middle East have been targeted as part of a previously undocumented campaign to deliver a new backdoor dubbed CR4T. Russian cybersecurity company Kaspersky said it discovered the activity… Read More »Hackers Target Middle East Governments with Evasive “CR4T” Backdoor
Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015. Cisco Talos said its findings are based on an analysis of over 100 confidential documents that… Read More »OfflRouter Malware Evades Detection in Ukraine for Almost a Decade