December 14, 2023 at 10:00AM The Gaza Cyber Gang, a pro-Hamas threat actor, has been targeting Palestinian entities using an updated backdoor called Pierogi++. This malware is implemented in C++ and has been used for consistent targeting of Palestinian entities. The group has been active since 2012 and continues to refine its malware for successful … Read more
December 14, 2023 at 04:12AM The 2023 SANS Holiday Hack Challenge is a festive and educational opportunity for those interested in or working in cyber security. With cyber attacks on the rise during the holiday season, the challenge aims to enhance skills and combat threats like phishing scams and DDoS attacks. The competition covers various … Read more
December 14, 2023 at 02:18AM From September 2023, hacker group GambleForce conducted SQL injection attacks in APAC, targeting 24 organizations in gambling, government, retail, and travel sectors. They used tools like dirsearch, sqlmap, and Cobalt Strike, and exploited a Joomla CMS flaw. Group-IB discovered and took down the group’s C2 server and notified the victims. … Read more
December 13, 2023 at 11:22AM Hackers are targeting a recently patched critical vulnerability (CVE-2023-50164) in Apache Struts, leading to remote code execution. Shadowserver reported limited exploitation attempts. Apache Struts is widely used in various sectors for web app development. A path traversal flaw in the recent versions could lead to unauthorized access, data theft, and … Read more
December 13, 2023 at 10:42AM Cybersecurity firm Abnormal Security reported that threat actors behind the BazaCall phishing attacks are now using Google Forms to enhance the credibility of their scheme, demonstrating a new attack variant. This method aims to bypass secure email gateways by leveraging trusted domains and dynamically generated URLs. Additionally, recruiters are being … Read more
December 13, 2023 at 01:07AM A Delhi-based think tank’s report argues that cybercrime groups and spyware vendors like Lazarus Group and NSO should be categorized as cyber mercenaries and face an international response. The usage of information technology in operations justifies this term. Concerns about the growth of this market and the need for legislation … Read more
December 12, 2023 at 03:34PM Are hacktivists controlled by nation-states or acting independently as contractors? Based on the meeting notes, the discussion seems to revolve around the question of whether hacktivists are under the control of nation-states or if they are independent contractors acting on behalf of those states. This is an important consideration for … Read more
December 12, 2023 at 01:24PM Summary: The healthcare industry faces a significant cyber threat, with Electronic Health Records (EHRs) commanding high prices on the dark web. Ransomware attacks exploit the sector’s reliance on digital systems and patient care urgency. Healthcare organizations are urged to adopt vigilant, proactive strategies, including monitoring digital footprints on platforms like … Read more
December 12, 2023 at 12:14PM The Ministry of Interior in Libya is collaborating with the UNDP to focus on cybersecurity in preparation for upcoming national elections. The training program aims to enhance staff’s grasp of cybersecurity best practices and social media dynamics to safeguard against foreign interference. The specialized module equips security staff to navigate … Read more
December 12, 2023 at 10:04AM The 2013 Target breach revealed significant vulnerabilities in third-party interactions, leading to nearly a billion dollars in financial damages. Despite efforts to strengthen cyber defenses, organizations continue to grapple with systemic issues and supply chain security. The industry now faces a critical need for a paradigm shift towards proactive data … Read more