RDP

Massive RDP Botnet Unleashed: 100,000+ IPs in Coordinated Global Scanning Campaign Targeting US

• Malware

Massive RDP Botnet Unleashed: 100,000+ IPs in Coordinated Global Scanning Campaign Targeting US

Do Son October 13, 2025 0

GreyNoise Intelligence has issued an alert about a massive coordinated botnet operation targeting Remote Desktop Protocol (RDP)...

Read More Read more about Massive RDP Botnet Unleashed: 100,000+ IPs in Coordinated Global Scanning Campaign Targeting US

Anatomy of an Attack: New Report Exposes Ukrainian Networks Fueling Global Brute-Force Campaigns

• Cybercriminals

Anatomy of an Attack: New Report Exposes Ukrainian Networks Fueling Global Brute-Force Campaigns

Do Son September 2, 2025 0

A new report from Intrinsec has revealed a sprawling web of Ukrainian and offshore networks fueling large-scale...

Read More Read more about Anatomy of an Attack: New Report Exposes Ukrainian Networks Fueling Global Brute-Force Campaigns

Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security

• Cybercriminals

Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security

Do Son August 27, 2025 0

Recently, threat hunters at Huntress observed two separate incidents involving a new ransomware variant dubbed Cephalus. The...

Read More Read more about Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections

• Cybercriminals

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections

Do Son August 26, 2025 0

Security intelligence firm GreyNoise has sounded the alarm over a massive spike in Microsoft Remote Desktop (RDP)...

Read More Read more about A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections

SafePay Ransomware Unleashed: New LockBit 3.0 Variant Hits 200+ MSPs & SMBs Worldwide

• Malware

SafePay Ransomware Unleashed: New LockBit 3.0 Variant Hits 200+ MSPs & SMBs Worldwide

Do Son July 11, 2025 0

A new ransomware group known as SafePay has swiftly risen from obscurity to infamy in Q1 2025,...

Read More Read more about SafePay Ransomware Unleashed: New LockBit 3.0 Variant Hits 200+ MSPs & SMBs Worldwide

RansomHub Breach: Six-Day Attack Leveraged RDP, RMM Tools & Mimikatz for Data Exfiltration & Ransomware

• Malware

RansomHub Breach: Six-Day Attack Leveraged RDP, RMM Tools & Mimikatz for Data Exfiltration & Ransomware

Do Son June 30, 2025 0

The DFIR Report’s latest case study exposes the meticulous six-day operation of a threat actor who leveraged...

Read More Read more about RansomHub Breach: Six-Day Attack Leveraged RDP, RMM Tools & Mimikatz for Data Exfiltration & Ransomware

Persistent DoS: Unauthenticated Attacker Crashes GNOME RDP (Even After Systemd)

• Vulnerability

Persistent DoS: Unauthenticated Attacker Crashes GNOME RDP (Even After Systemd)

Do Son May 26, 2025 0

A newly disclosed flaw in GNOME’s remote desktop component, tracked as CVE-2025-5024 (CVSS 7.4), could allow unauthenticated...

Read More Read more about Persistent DoS: Unauthenticated Attacker Crashes GNOME RDP (Even After Systemd)

Russian IP Networks Fuel North Korea’s Global Cybercrime and Espionage Campaigns

• Cybercriminals

Russian IP Networks Fuel North Korea’s Global Cybercrime and Espionage Campaigns

Do Son April 25, 2025 0

A revealing new report from Trend Micro uncovers how Russian IP infrastructure is playing a pivotal role...

Read More Read more about Russian IP Networks Fuel North Korea’s Global Cybercrime and Espionage Campaigns

Larva-24005: Kimsuky’s Global Cyber Espionage Campaign Exploits RDP and Office Flaws

• Cybercriminals

Larva-24005: Kimsuky’s Global Cyber Espionage Campaign Exploits RDP and Office Flaws

Do Son April 21, 2025 0

A new cybersecurity report from the AhnLab Security intelligence Center (ASEC) has shed light on a recently...

Read More Read more about Larva-24005: Kimsuky’s Global Cyber Espionage Campaign Exploits RDP and Office Flaws

Rogue RDP: Abusing RDP for File Theft and Espionage

• Cyber Security

Rogue RDP: Abusing RDP for File Theft and Espionage

Do Son April 9, 2025 0

A recent report by Google Threat Intelligence Group (GTIG) has shed light on a sophisticated phishing campaign...

Read More Read more about Rogue RDP: Abusing RDP for File Theft and Espionage

CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access

• Vulnerability

CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access

Do Son April 1, 2025 0

A new vulnerability in JumpServer (CVE-2025-27095) has been disclosed, exposing Kubernetes clusters to potential compromise through token...

Read More Read more about CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access