July 8, 2024 at 08:01AM Cybercriminals have evolved from traditional Living Off The Land (LOTL) attacks to Living Off the Cloud (LOTC) tactics, exploiting trusted cloud services’ APIs to remotely control botnets and conceal malicious activity. To mitigate these risks, organizations should adopt a zero-trust approach, control access to cloud services, implement granular activity control, … Read more
November 16, 2023 at 08:12AM The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and MS-ISAC have issued an advisory about the Rhysida ransomware. The threat actors behind Rhysida use a ransomware-as-a-service model and target organizations in various sectors. They exploit VPNs, the Zerologon vulnerability, and phishing campaigns to gain access to networks. Rhysida … Read more
October 13, 2023 at 07:06AM AvosLocker ransomware gang has been linked to recent attacks on critical infrastructure sectors in the U.S. The gang uses legitimate software and open-source remote administration tools to compromise networks and exfiltrate data. AvosLocker leverages sophisticated techniques to avoid detection and affects Windows, Linux, and VMware environments. The attacks rely on … Read more