July 4, 2024 at 12:18PM A threat actor compromised Ethereum’s mailing list provider and sent a phishing email to over 35,000 addresses, luring recipients to a malicious site offering investment returns. Ethereum disclosed the incident, stating it had no material impact. The internal security team launched an investigation, blocked the attacker, and warned the community. … Read more
July 4, 2024 at 04:36AM Europol led Operation Morpheus to tackle nearly 600 illegal IP addresses associated with Cobalt Strike. The disruptive action targeted criminal activity, involving partners in 27 countries. Notable support was provided by private sector partners and Europol’s Malware Information Sharing Platform. The operation sent a strong message to cybercriminals globally. However, … Read more
July 4, 2024 at 02:01AM Brain Cipher, the group behind the hacking of Indonesia’s Temporary National Data Center, has apologized and released an encryption key to the government. The key was a 54 kb ESXi file, with its effectiveness yet to be confirmed. The group shared its motive, claiming to act as penetration testers and … Read more
July 4, 2024 at 12:34AM Law enforcement operation MORPHEUS seized nearly 600 servers used by cybercriminal groups and part of the Cobalt Strike attack infrastructure. The crackdown targeted unlicensed versions of Cobalt Strike, involving multiple countries. Exploitation of cracked software contributed to cybercrime, with related arrests and dismantling of other criminal schemes worldwide. Based on … Read more
July 3, 2024 at 11:51PM Twilio, a cloud communications provider, disclosed a mobile security breach in the Authy 2FA app. Threat actors exploited an unauthenticated endpoint to access user data, prompting the company to secure the endpoint. Although no direct system breach was proven, Twilio urged users to upgrade their apps due to possible phishing … Read more
July 3, 2024 at 04:24PM Nick Cerne from Bishop Fox discovered vulnerabilities in Traeger grills with the D2 Wi-Fi Controller, enabling remote attackers to issue commands, such as altering the temperature. Despite the potential risks, Traeger automatically updates affected grills. The need for secure IoT devices is underscored, while recommendations include physical control of devices … Read more
July 3, 2024 at 02:07PM OVHcloud, a major European cloud services provider, successfully mitigated a record-breaking DDoS attack earlier this year, reaching 840 Mpps and stemming from compromised MikroTik network devices. The company has observed a trend of escalating attack sizes and frequency. The high processing power of MikroTik devices poses a significant threat, with … Read more
July 3, 2024 at 12:52PM A new ransomware player, Volcano Demon, has emerged with innovative locker malware, LukaLocker, and sophisticated evasion tactics, hampering forensic analysis. It employs double extortion, exfiltrates data, and demands ransom via qTox messaging. The malware terminates various security and monitoring services, posing a significant threat. vigilance and IoC monitoring are crucial. … Read more
July 3, 2024 at 12:31PM The Traeger Grill D2 Wi-Fi Controller had high-severity vulnerabilities, allowing remote attackers to control the grill, potentially ruining meals. Attackers could exploit weaknesses in the grill registration API and use a POST request to list registered grills. Traeger has already fixed these bugs with firmware upgrades and disabling the vulnerable … Read more
July 3, 2024 at 12:13PM In 2024, ransomware demands have soared, with an average extortion demand per attack surpassing $5.2 million in the first half of the year. The largest demand was $100 million following an attack on India’s RCC, followed by demands of $50 million and $25 million for other organizations. Despite a decrease … Read more