Nov 22, 2024Ravie LakshmananCyber Espionage / Malware Threat actors with ties to Russia have been linked to a cyber espionage campaign aimed at organizations in Central Asia, East Asia, and Europe. Recorded Future’s Insikt Group, which has assigned the activity cluster the name TAG-110, said it overlaps with a threat group tracked by the Computer … Read more
Malicious hackers have compromised potentially thousands of organizations by exploiting two new zero-day vulnerabilities found in widely used software made by cybersecurity giant Palo Alto Networks. Security researchers at Palo Alto Networks said Wednesday that they have observed a “limited set of exploitation activity” related to the two vulnerabilities in PAN-OS, the operating system that … Read more
Oct 20, 2024Ravie LakshmananVulnerability / Email Security Unknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user credentials. Russian cybersecurity company Positive Technologies said it discovered last month that an email was sent to an unspecified … Read more
Hackers are utilizing cloud service assaults as a approach to go after big-money targets within the insurance coverage and monetary industries. Safety professionals with Eclectic IQ stated that an APT identified to defenders as “Scattered Spider” has been looking for to interrupt into company cloud cases as a approach to steal knowledge and ransom its … Read more
North Korean risk actors have leveraged a pretend Home windows video conferencing software impersonating FreeConference.com to backdoor developer techniques as a part of an ongoing financially-driven marketing campaign dubbed Contagious Interview. The brand new assault wave, noticed by Singaporean firm Group-IB in mid-August 2024, is yet one more indication that the exercise can also be … Read more
