January 26, 2024 at 01:21AM Microsoft has reported that Russian state-sponsored threat actors responsible for a cyber attack on its systems in late November 2023 are now targeting other organizations. The group, known as APT29 or BlueBravo, primarily targets governments, diplomatic entities, and IT service providers in the U.S. and Europe. They utilize legitimate but … Read more
October 26, 2023 at 10:06AM Scattered Spider, a prolific threat actor, is impersonating new employees in targeted firms to infiltrate organizations worldwide. Microsoft describes the group, also known as Octo Tempest, as a dangerous financial criminal group that utilizes SMS phishing, SIM swapping, and help desk fraud to carry out their attacks. Their tactics include … Read more
October 13, 2023 at 08:30AM The APT actor ToddyCat has been linked to new malicious tools used for data exfiltration, providing insight into their tactics. Kaspersky discovered the group last year, connecting it to attacks on high-profile entities in Europe and Asia. The tools include loaders, a Trojan, a file collection tool, a Dropbox uploader, … Read more