Cloud services have become a critical enabler for modern businesses, offering scalable, secure storage and processing capabilities. However, these same services are increasingly being exploited by ransomware groups as tools for both compromising systems and exfiltrating sensitive data. Ransomware exploits cloud services A recent report from SentinelLabs, The State of Cloud Ransomware in 2024, highlights … Read more
Nov 06, 2024Ravie LakshmananSaaS Security / Threat Detection An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus operandi. “Leveraging Microsoft SaaS services — including Teams, SharePoint, Quick Assist, and OneDrive — the attacker exploited the trusted … Read more
Microsoft Threat Intelligence on Oct. 17 warned security teams that Microsoft Defender for Endpoint detected that Adload malware exploited a previously patched macOS vulnerability. Referred to as the HM Surf vulnerability, the flaw — CVE-2024-44133 — lets attackers bypass the transparency, consent, and control (TCC) protections for the Safari browser directory, giving attackers unlimited access … Read more
Sep 13, 2024Ravie LakshmananEnterprise Safety / Vulnerability Cybersecurity researchers have uncovered a brand new malware marketing campaign concentrating on Linux environments to conduct illicit cryptocurrency mining. The exercise, which particularly singles out the Oracle Weblogic server, is designed to ship malware dubbed Hadooken, in response to cloud safety agency Aqua. “When Hadooken is executed, it … Read more
Sep 03, 2024Ravie LakshmananRansomware / Malware A hacktivist group generally known as Head Mare has been linked to cyber assaults that solely goal organizations positioned in Russia and Belarus. “Head Mare makes use of extra up-to-date strategies for acquiring preliminary entry,” Kaspersky stated in a Monday evaluation of the group’s techniques and instruments. “As an … Read more
