CISA: No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday said there are no indications that the cyber attack targeting the Treasury Department impacted other federal agencies. The agency said it’s working closely with the Treasury Department and BeyondTrust Read more…
Ongoing Phishing and Malware Campaigns in December 2024 Cyber attackers never stop inventing new ways to compromise their targets. That’s why organizations must stay updated on the latest threats. Here’s a quick rundown of the current malware and phishing attacks you need to know about to safeguard your infrastructure before Read more…
Warning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign As many as 2,000 Palo Alto Networks devices are estimated to have been compromised as part of a campaign abusing the newly disclosed security flaws that have come under active exploitation in the wild. According to statistics shared Read more…
Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign Oct 18, 2024Ravie LakshmananThreat Intelligence / Phishing Attack Threat actors are leveraging fake Google Meet web pages as part of an ongoing malware campaign dubbed ClickFix to deliver infostealers targeting Windows and macOS systems. “This tactic involves displaying fake error Read more…
Cisco confirms ongoing probe into alleged data breach • The Register Cisco has confirmed it is investigating claims of stealing — and now selling — data belonging to the networking giant. This allegedly includes a ton of sensitive Switchzilla files, according to prolific extortionist IntelBroker — the moniker for one of several Read more…
Snowflake Breach Exposes 165 Customers' Data in Ongoing Extortion Campaign As many as 165 customers of Snowflake are said to have had their information potentially exposed as part of an ongoing campaign designed to facilitate data theft and extortion, indicating the operation has broader implications than previously thought. Google-owned Mandiant, Read more…
Ongoing Campaign Bombards Enterprises with Spam Emails and Phone Calls Cybersecurity researchers have uncovered an ongoing social engineering campaign that bombards enterprises with spam emails with the goal of obtaining initial access to their environments for follow-on exploitation. “The incident involves a threat actor overwhelming a user’s email with junk and calling Read more…
N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data. Kimsuky, active since at Read more…
Russian SVR-Linked APT29 Targets JetBrains TeamCity Servers in Ongoing Attacks Threat actors affiliated with the Russian Foreign Intelligence Service (SVR) have targeted unpatched JetBrains TeamCity servers in widespread attacks since September 2023. The activity has been tied to a nation-state group known as APT29, which is also tracked as BlueBravo, Read more…
Russian APT28 Hackers Targeting 13 Nations in Ongoing Cyber Espionage Campaign Dec 12, 2023NewsroomCyber Espionage / Malware The Russian nation-state threat actor known as APT28 has been observed making use of lures related to the ongoing Israel-Hamas war to facilitate the delivery of a custom backdoor called HeadLace. IBM X-Force Read more…