‘Dubai Police’ Lures Anchor Wave of UAE Mobile Attacks

December 13, 2024 at 02:06AM Dubai Police are being impersonated by fraudsters in a phishing campaign targeting mobile users in the UAE. The attackers send messages with fake URLs, aiming to harvest personal and financial information. Cybercriminals exploit the UAE’s digital vulnerabilities, urging organizations to enhance cybersecurity measures and cooperate with law enforcement against evolving … Read more

Europol Cracks Down on Holiday DDoS Attacks

December 12, 2024 at 03:06PM Law enforcement worldwide has seized 27 popular platforms used for DDoS attacks in an ongoing operation called PowerOFF, coordinated by Europol across 15 countries. It targeted cybercriminals, arresting three administrators and identifying over 300 others. Authorities aim to disrupt the cybercrime ecosystem, especially during heightened holiday attack periods. ### Meeting … Read more

Cleo patches critical zero-day exploited in data theft attacks

December 12, 2024 at 12:09PM Cleo has released urgent security patches for a zero-day vulnerability in its LexiCom, VLTransfer, and Harmony software, actively exploited in data theft attacks linked to the Termite ransomware gang. Customers are advised to upgrade to version 5.8.0.24 to enhance security and mitigate risks from these breaches. ### Meeting Takeaways 1. … Read more

Russian cyber spies hide behind other hackers to target Ukraine

December 12, 2024 at 11:09AM Russian cyber-espionage group Turla is leveraging other threat actors’ infrastructure, specifically targeting Ukrainian military devices via Starlink. Utilizing malware from the Amadey botnet and other sources, Turla deploys custom malware like Tavdig and KazuarV2 to gather intelligence and perform reconnaissance on compromised systems. Microsoft recently highlighted these activities. ### Key … Read more

Silent Push Raises $10 Million for Preemptive Threat Intelligence Platform

December 12, 2024 at 10:47AM Silent Push, a detection-focused threat intelligence firm, has raised $10 million, bringing total funding to $22 million. Founded in 2020, the Virginia-based startup offers tools to counter cyberattacks by identifying malicious infrastructure and utilizing automated adversary intelligence. The funding will aid expansion into new regions and enhance marketing efforts. **Meeting … Read more

Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States

December 12, 2024 at 09:51AM Gamaredon, a Russia-linked threat actor, has developed two Android spyware tools, BoneSpy and PlainGnome, targeting Russian-speaking victims in former Soviet states. These tools gather extensive data from infected devices. Their use marks the first instance of mobile-only malware in Gamaredon’s campaigns, which also includes attempts against NATO countries. ### Meeting … Read more

Secret Blizzard Deploys Kazuar Backdoor in Ukraine Using Amadey Malware-as-a-Service

December 11, 2024 at 01:36PM Russian threat actor Secret Blizzard has been using malware, specifically the Amadey bot, to deploy the Kazuar backdoor on Ukrainian military systems. This marks their continued strategy to utilize other hackers’ access for espionage. Microsoft reports the group uses various cyberattack methods to obtain covert intelligence. ### Meeting Takeaways – … Read more

Microsoft holds last Patch Tuesday of the year with 72 gifts for admins

December 10, 2024 at 03:55PM This month, Microsoft has released 72 fixes, with CVE-2024-49138 posing an immediate risk due to active exploitation. Adobe, on the other hand, issued 167 fixes, including 91 for Adobe Experience Manager and critical updates for Adobe Connect. Users are urged to patch vulnerabilities across all platforms promptly. ### Meeting Takeaways … Read more

Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering

December 9, 2024 at 01:18PM Black Basta ransomware is evolving its tactics, utilizing social engineering and various malware like Zbot and DarkGate since October 2024. The group employs email bombing, impersonation on Microsoft Teams, and QR codes to target users. Their ultimate aim includes credential harvesting and VPN file theft for further breaches. ### Meeting … Read more

Deloitte Responds After Ransomware Group Claims Data Theft

December 9, 2024 at 07:07AM Deloitte responded to claims by the ransomware group Brain Cipher, which alleges it stole over one terabyte of data. Deloitte stated the issue pertains to a single client’s external system, with no impacts on its network. The group has targeted various sectors and threatened to release stolen data unless paid. … Read more