Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

June 18, 2024 at 12:36PM A state-sponsored threat actor, Velvet Ant, maintained persistent access to a victim organization’s network for three years using a legacy F5 BIG-IP appliance, deploying various tools and techniques to compromise critical systems and access sensitive data. The cybersecurity firm Sygnia believes they are a China-based threat actor with sophisticated OPSEC … Read more

Turkish Cyber Threat Targets MSSQL Servers With Mimic Ransomware

January 9, 2024 at 01:42PM Cybercriminals are targeting Microsoft’s database, with the specific threat group behind these attacks remaining unidentified. These security breaches were discovered due to an unintentional operational security lapse. It appears that Microsoft’s database is facing continued cybercriminal attention, with the threat group behind the attacks currently unknown. These attacks were only … Read more

Strangely enough, no one wants to buy a ransomware group that has cops’ attention

November 10, 2023 at 10:46AM Ransomware group claims to have permanently shut down due to suspected arrests. The group had previously announced plans to sell the operation, offering a discount before the latest announcement of potential arrests. The group cited the welfare of its affiliates and their lack of opsec skills as reasons for … Read more