Cyber Security Archives • Page 30 of 85 • Daily CyberSecurity

Cybersecurity Alert: MUT-8694 Supply Chain Attack Targets npm and PyPI Ecosystems MUT-8694 threat actor

Cybersecurity Alert: MUT-8694 Supply Chain Attack Targets npm and PyPI Ecosystems

Do Son November 26, 2024

The open-source ecosystem has once again become the battleground for cybercriminals, as Datadog’s Security Research team uncovered...

Kansas City Man Indicted for Hacking into Nonprofit and Health Club NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

Kansas City Man Indicted for Hacking into Nonprofit and Health Club

Do Son November 26, 2024

A 31-year-old man has been indicted by a federal grand jury for hacking into the computer systems...

Infostealers VietCredCare and DuckTail Fuel Facebook Business Account Exploitation

Do Son November 25, 2024

Vietnam has become a hotspot for malicious operations targeting Facebook Business accounts, with threat actors leveraging infostealers...

North Korean and Chinese Threat Actors Target Crypto, Aerospace, and Government Agencies

Do Son November 25, 2024

At CYBERWARCON 2024, Microsoft Threat Intelligence unveiled groundbreaking research on two major nation-state cyber actors: North Korea...

Unveiling the “Nearest Neighbor Attack”: A Russian APT’s Covert Tactic to Weaponize Wi-Fi GruesomeLarch - Nearest Neighbor Attack

Unveiling the “Nearest Neighbor Attack”: A Russian APT’s Covert Tactic to Weaponize Wi-Fi

Do Son November 25, 2024

Volexity, a leading cybersecurity firm, has revealed a novel attack technique employed by the Russian APT group...

Google Docs and Weebly Weaponized in New Phishing Scheme Motivated Threat Actors

Google Docs and Weebly Weaponized in New Phishing Scheme

Do Son November 24, 2024

A recent phishing campaign, uncovered by EclecticIQ researchers, highlights the lengths attackers will go to exploit trusted...

Russia-Linked TAG-110 Launches Cyberespionage Campaign Across Asia and Europe

Do Son November 24, 2024

Insikt Group, the threat research division of Recorded Future, has uncovered a cyberespionage campaign attributed to TAG-110,...

WolfsBane: Gelsemium APT Group’s Linux Backdoor Debut Gelsemium APT group - WolfsBane

WolfsBane: Gelsemium APT Group’s Linux Backdoor Debut

Do Son November 24, 2024

ESET researchers have unveiled WolfsBane, the Linux counterpart to the Windows-based Gelsevirine backdoor, marking a significant milestone...

Asyncshell: The Evolution of APT-K-47’s Cyber Arsenal

Do Son November 24, 2024

The Knownsec 404 Advanced Threat Intelligence team has uncovered a sophisticated and evolving threat from the APT-K-47...

Government IDs and Facial Recognition: A New Phishing Threat

Do Son November 24, 2024

A recent report by Harsh Patel and Brandon Cook from the Cofense Phishing Defense Center highlights a...

PROSPERO & Proton66: Unmasking the Bulletproof Hosting Connection bulletproof networks - PROSPERO and Proton66

PROSPERO & Proton66: Unmasking the Bulletproof Hosting Connection

Do Son November 24, 2024

In a comprehensive report by Intrinsec, the cybersecurity community is presented with detailed insights into the connection...

Fake Identities, Real Profits: Exposing North Korea’s IT Front Companies DPRK IT Workers

Fake Identities, Real Profits: Exposing North Korea’s IT Front Companies

Do Son November 24, 2024

SentinelLabs has exposed a sophisticated network of front companies linked to North Korean IT workers. These entities,...

Ignoble Scorpius Strikes Again: The Rise of BlackSuit Ransomware

Do Son November 22, 2024

The cybercrime group known as Ignoble Scorpius has resurfaced with the BlackSuit ransomware, as detailed in a...

Microsoft Takes Down “ONNX” Phishing-as-a-Service Operation

Do Son November 22, 2024

Microsoft’s Digital Crimes Unit (DCU) has struck a significant blow against the cybercrime supply chain, seizing 240...

300,000 Forced to Scam: Meta’s Report Reveals Staggering Scale of “Pig Butchering”

Do Son November 22, 2024

In a recent report, Meta detailed its efforts to combat the organized crime networks behind “pig butchering”...

USDA Pioneers Phishing-Resistant MFA with Fast IDentity Online (FIDO)

Do Son November 22, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has published an insightful report detailing the U.S. Department of...

“PopeyeTools” Dismantled: Justice Department Seizes Cybercrime Marketplace and Charges Administrators

Do Son November 22, 2024

In a significant operation targeting cybercriminal infrastructure, the U.S. Department of Justice announced the seizure of PopeyeTools,...

Chinese APTs Shift Tactics to Evade Detection and Maintain Stealth Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Chinese APTs Shift Tactics to Evade Detection and Maintain Stealth

Do Son November 21, 2024

In light of increasing global tensions and heightened scrutiny, Chinese Advanced Persistent Threat (APT) groups are adapting...

Raspberry Robin’s Stealth Tactics: USB Infections, Exploits, and Advanced Obfuscation Unveiled GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

GuLoader Malware CloudEye Obfuscation npm, malware Ethereum, npm supply chain OAST techniques StilachiRAT macOS Malware PasivRobber

Raspberry Robin’s Stealth Tactics: USB Infections, Exploits, and Advanced Obfuscation Unveiled

Do Son November 21, 2024

Raspberry Robin, also known as Roshtyak, stands out as a highly advanced malicious downloader. Discovered in 2021,...

Cybersecurity Concerns Loom Over Drinking Water Systems, Says EPA Inspector General Report Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Cybersecurity Concerns Loom Over Drinking Water Systems, Says EPA Inspector General Report

Do Son November 21, 2024

A new report from the Office of Inspector General (OIG) of the U.S. Environmental Protection Agency (EPA)...

Critical Alert