June 14, 2024 at 11:06AM Scattered Spider gang, also known as Octo Tempest, engages in social engineering attacks to steal data from SaaS apps. They use SMS phishing and SIM swapping for on-premise access. Their tactics expanded to cloud infrastructures without ransomware. They create new virtual machines, disable security protections, and exfiltrate data to cloud … Read more
April 17, 2024 at 06:07AM The Sandworm hacker group, APT44, has been supporting Russian military objectives in Ukraine while expanding cyberthreat operations globally. Mandiant’s analysis found Sandworm to be integrated with Russia’s GRU, potent in cyberattacks, and broad in its global targeting. Sandworm has used CyberArmyofRussia_Reborn and focuses on espionage while using legitimate tools to … Read more
January 12, 2024 at 06:15AM The recently discovered Ivanti Connect Secure zero-day vulnerabilities are being exploited by threat actors linked to China, aiming to steal valuable data. These vulnerabilities, CVE-2023-46805 and CVE-2024-21887, pose a serious threat, with over 7,000 internet-exposed instances vulnerable to attacks. Patches are expected by the week of January 22, but CISA … Read more