June 16, 2024 at 12:54AM Law enforcement authorities have arrested a 22-year-old man, believed to be a key member of the cybercrime group “Scattered Spider.” The arrest, in Palma de Mallorca, was a joint effort between the FBI and the Spanish Police. The individual is associated with high-profile ransomware attacks and SIM-swapping activities. This is … Read more
June 11, 2024 at 12:28PM Dutch Military Intelligence and Security Service (MIVD) warned of the significant impact of a Chinese cyber-espionage campaign. Exploiting a critical vulnerability in FortiOS/FortiProxy, Chinese hackers infected 14,000 devices, targeting governments, organizations, and defense industry. They deployed a remote access trojan malware, giving them permanent access to systems and breaching at … Read more
May 23, 2024 at 06:12AM A Chinese state-aligned threat group, known as Diplomatic Specter, has been conducting a brazen espionage campaign across the Middle East, Africa, and Southeast Asia since late 2022. They target high-level government and military entities to obtain sensitive information. The group exploits vulnerabilities, uses various malicious tools, and exfiltrates emails and … Read more
May 22, 2024 at 11:19AM Cybersecurity researchers uncovered a new threat group called Unfading Sea Haze, targeting high-level organizations in South China Sea countries. The attackers have ties to Chinese interests, utilize various malware and persistence techniques, and engage in manual data exfiltration, suggesting a focused espionage campaign. The group’s sophisticated arsenal and tactics aim … Read more
March 25, 2024 at 05:30PM Seven Chinese nationals have been charged by the US and the UK for their involvement in the activities of threat group APT31. Based on the meeting notes, the key takeaways are: 1. The US and the UK have jointly charged seven Chinese nationals for operating as part of threat group … Read more
February 6, 2024 at 10:11AM The ‘ResumeLooters’ threat group has compromised 65 job listing and retail sites using SQL injection and XSS attacks, stealing personal data from over two million job seekers primarily in the APAC region. They employ various tools for penetration testing, such as SQLmap and Acunetix, to exploit security weaknesses and inject … Read more
January 9, 2024 at 01:42PM Cybercriminals are targeting Microsoft’s database, with the specific threat group behind these attacks remaining unidentified. These security breaches were discovered due to an unintentional operational security lapse. It appears that Microsoft’s database is facing continued cybercriminal attention, with the threat group behind the attacks currently unknown. These attacks were only … Read more