Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting

31/05/2024 0 Comments 0 tags

The Russian GRU-backed threat actor APT28 has been attributed as behind a series of campaigns targeting networks across Europe with the HeadLace malware and credential-harvesting web pages. APT28, also known

OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns

31/05/2024 0 Comments 0 tags

OpenAI on Thursday disclosed that it took steps to cut off five covert influence operations (IO) originating from China, Iran, Israel, and Russia that sought to abuse its artificial intelligence

FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine

30/05/2024 0 Comments 0 tags

Cloudflare on Thursday said it took steps to disrupt a month-long phishing campaign orchestrated by a Russia-aligned threat actor called FlyingYeti targeting Ukraine. “The FlyingYeti campaign capitalized on anxiety over

CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw

30/05/2024 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting the Linux kernel to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability

30/05/2024 0 Comments 0 tags

The threat actors behind the RedTail cryptocurrency mining malware have added a recently disclosed security flaw impacting Palo Alto Networks firewalls to its exploit arsenal. The addition of the PAN-OS

Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors

30/05/2024 0 Comments 0 tags

A previously undocumented cyber espionage-focused threat actor named LilacSquid has been linked to targeted attacks spanning various sectors in the United States (U.S.), Europe, and Asia as part of a

Okta Warns of Credential Stuffing Attacks Targeting Customer Identity Cloud

30/05/2024 0 Comments 0 tags

Okta is warning that a cross-origin authentication feature in Customer Identity Cloud (CIC) is susceptible to credential stuffing attacks orchestrated by threat actors. “We observed that the endpoints used to

U.S. Dismantles World’s Largest 911 S5 Botnet, with 19 Million Infected Devices

30/05/2024 0 Comments 0 tags

The U.S. Department of Justice (DoJ) on Wednesday said it dismantled what it described as “likely the world’s largest botnet ever,” which consisted of an army of 19 million infected

Europol Shuts Down 100+ Servers Linked to IcedID, TrickBot, and Other Malware

30/05/2024 0 Comments 0 tags

Europol on Thursday said it shut down the infrastructure associated with several malware loader operations such as IcedID, SystemBC, PikaBot, SmokeLoader, Bumblebee, and TrickBot as part of a coordinated law

How to Build Your Autonomous SOC Strategy

30/05/2024 0 Comments 0 tags

Security leaders are in a tricky position trying to discern how much new AI-driven cybersecurity tools could actually benefit a security operations center (SOC). The hype about generative AI is