February 28, 2024 at 10:08AM The article discusses the rising threat of phishing attacks, including recent high-profile incidents and actionable tips to mitigate risks. It emphasizes the importance of employee training, advanced email filtering, and multi-factor authentication to bolster defense. Additionally, it advocates for security automation to streamline incident response and proactively address potential threats. … Read more
February 26, 2024 at 03:05PM Threat actors are exploiting an outdated CMS editor to compromise education and government entities worldwide. Attackers abuse open redirects for phishing, distributing malware, or scamming users while appearing to originate from legitimate domains. The campaign targets educational institutions, government, and corporate sites, using the outdated FCKeditor plugin. The compromised instances … Read more
February 26, 2024 at 12:09PM SecurityWeek’s Cyber Insights 2024 discusses evolving cybersecurity challenges and the impact of AI. The text highlights diverse expert opinions on AI’s role in cyber threats including phishing, deepfakes and disinformation. It also addresses the implications of AI in regulatory environments and proposes a dualistic perspective of AI as both a … Read more
February 26, 2024 at 05:15AM Cybersecurity researchers are cautioning about a surge in email phishing campaigns utilizing Google Cloud Run to distribute banking trojans Astaroth, Mekotio, and Ousaban. Malware distribution campaigns using the same Google Cloud storage bucket have been observed since September 2023. Phishing activities are further facilitated by the availability of phishing kits … Read more
February 21, 2024 at 05:09AM The 2023 Thanksgiving Day witnessed ransomware attacks on U.S. hospitals, adversely affecting patient care. Small healthcare organizations are targeted due to vulnerable cybersecurity defenses and limited budgets, leading to compromised patient safety and hefty ransom payments. The healthcare sector needs advanced security measures, such as Managed EDR, and employee training … Read more
February 21, 2024 at 03:23AM Identity-related threats, such as stolen credentials, pose a growing risk to network security. IBM X-Force and CrowdStrike report a significant increase in cyber attacks using legitimate credentials, with compromise of cloud account credentials being predominant. Meanwhile, phishing attacks remained a leading initial access vector. Adversaries target identities as the easiest … Read more
February 18, 2024 at 11:57PM Charming Kitten, an Iranian-origin threat actor also known as APT35, has been linked to new attacks aimed at Middle East policy experts using a new backdoor called BASICSTAR through a fake webinar portal. The group, affiliated with Iran’s Revolutionary Guard Corps, uses a range of social engineering tactics, including phishing … Read more
February 16, 2024 at 06:45AM A Python script called SNS Sender is being utilized to send fraudulent SMS messages through AWS SNS, posing as messages from USPS to trick users into disclosing personal and payment information. The tool leverages AWS SNS to conduct SMS spamming attacks and is linked to a threat actor named ARDUINO_DAS. … Read more
February 13, 2024 at 10:11AM Summary: Despite being underestimated, SaaS chat apps like Microsoft Teams and Slack are susceptible to sophisticated cyber threats, including phishing campaigns and malware attacks. These attacks exploit vulnerabilities in Teams’ external access settings, posing a growing risk to users. To mitigate these risks, organizations are advised to implement specific remediation … Read more
February 13, 2024 at 09:25AM A phishing campaign targeting senior business executives and other high-level roles has seen a spike in compromised accounts, including hundreds of cloud account takeovers and numerous Azure environments affected. The attackers aim to gain access to privileged accounts, steal sensitive data, and manipulate multi-factor authentication methods. Researchers advise vigilance and … Read more