July 22, 2024 at 08:11AM Two members of the Cyber Army of Russia Reborn (CARR) hacktivist crew, Yuliya Vladimirovna Pankratova and Denis Olegovich Degtyarenko, have been added to the US sanctions list for their alleged roles in attacks on US critical national infrastructure. These attacks included remote manipulation of controls and compromising SCADA systems. Other … Read more
July 22, 2024 at 12:24AM A new Linux variant of the Play ransomware, known for double extortion tactics, has been discovered by Trend Micro researchers. This variant targets VMWare ESXi environments, expanding its potential victim pool. The ransomware has targeted industries such as manufacturing, IT, and retail, while collaborating with the services of Prolific Puma … Read more
July 19, 2024 at 07:18AM Learn from Cybersixgill’s threat experts about critical underground activities and the threat actors behind them impacting organizations. Discover the crucial need for identity intelligence to mitigate risks stemming from compromised credentials and accounts in the ever-evolving cyber threat landscape. Enhance security with machine learning and AI to proactively identify and … Read more
July 15, 2024 at 01:48PM A sophisticated criminal network based in Iraq has been uncovered, revolving around a Telegram bot with over 90,000 messages mainly in Arabic. Checkmarx researchers found the bot to be central to a larger cybercriminal ecosystem offering various illicit services. They also discovered malicious Python packages on PyPI facilitating data theft, … Read more
July 15, 2024 at 07:24AM Vyacheslav Igorevich Penchukov, a Ukrainian national, was sentenced in a US federal court in Nebraska to nine years in prison and three years of supervised release, with an order to pay over $70 million in restitution and forfeiture funds. He was involved in the Zeus and IcedID malware operations, leading … Read more
July 11, 2024 at 05:44PM Akira ransomware attackers have shown a significant decrease in the time it takes to steal data, managing to siphon off information from a Latin American airline in just over two hours. Using SSH protocol, the threat actor gained access via an unpatched Veeam backup server and swiftly began exfiltrating data … Read more
July 5, 2024 at 09:07AM A webinar on Identity Threat Detection and Response (ITDR) will provide insider knowledge on modern cybersecurity threats and protection. Led by Silverfort’s VP of Product Marketing, Yiftach Keshet, the session will cover hidden security vulnerabilities, top features of ITDR solutions, real-world scenarios, and future identity security trends. Register now before … Read more
July 4, 2024 at 12:34AM Law enforcement operation MORPHEUS seized nearly 600 servers used by cybercriminal groups and part of the Cobalt Strike attack infrastructure. The crackdown targeted unlicensed versions of Cobalt Strike, involving multiple countries. Exploitation of cracked software contributed to cybercrime, with related arrests and dismantling of other criminal schemes worldwide. Based on … Read more
July 3, 2024 at 03:30PM Europol coordinated a global crackdown targeting cybercriminals’ use of legitimate security tools, resulting in the takedown of nearly 600 Cobalt Strike servers linked to criminal activity. The agency worked with private sector companies to flag and disable unlicensed versions of the tool across 27 countries as part of Operation Morpheus, … Read more
June 25, 2024 at 11:15AM The European Council has imposed sanctions on six Russian nationals for cyber activities targeting the EU and Ukraine. This marks the first time the EU has taken such measures against cybercriminal actors using ransomware. The list includes individuals linked to cyberattack groups, and the sanctions freeze their assets while prohibiting … Read more