#RemoteAccessTools

Progress WhatsUp Gold Exploited Just Hours After PoC Release for Critical Flaw

by

September 13, 2024 at 08:15AM Malicious actors are leveraging publicly available proof-of-concept exploits for security flaws in Progress Software WhatsUp Gold, leading to opportunistic attacks shortly after the release. The attacks involved bypassing authentication and exploiting PowerShell scripts to download remote access tools, indicating potential involvement of ransomware actors. This is the second active weaponization … Read more

Remote Access Sprawl Strains Industrial OT Network Security

by

September 11, 2024 at 10:04AM The exploding demand for remote access has created a vulnerable attack surface for industrial control systems, with many using multiple inadequate remote access tools. Critical infrastructure sectors are at risk, and cyberattackers have already exploited such tools in high-profile breaches. The report emphasizes the need for better management, security standards, … Read more

Mad Liberator extortion crew emerges on the cyber-crook scene

by

August 15, 2024 at 06:38AM Mad Liberator, a new extortion gang, targets organizations using social engineering and the remote-access tool Anydesk to steal data and demand ransom. While not encrypting data, they use double-extortion tactics and operate a leak site. Anydesk advises implementing security measures to prevent such attacks. The gang’s emergence aligns with a … Read more

U.S. Cybersecurity Agencies Warn of Scattered Spider’s Gen Z Cybercrime Ecosystem

by

November 17, 2023 at 02:54AM U.S. cybersecurity and intelligence agencies have issued a joint advisory about a cybercriminal group called Scattered Spider, known for using sophisticated phishing tactics. The group engages in data theft for extortion and has recently used BlackCat/ALPHV ransomware. Scattered Spider relies on social engineering techniques and has connections to the Gen … Read more