#XynikAlert

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

by

January 17, 2024 at 01:30PM Microsoft has uncovered a sophisticated spear-phishing campaign by the ‘Mint Sandstorm’ hackers, associated with Iran’s military intelligence. The attacks target high-profile individuals in Middle Eastern affairs, using impersonation of journalists and benign emails to build trust before delivering malicious content. The hackers utilize compromised accounts to send phishing lures and … Read more

Finland warns of Akira ransomware wiping NAS and tape backup devices

by

January 11, 2024 at 10:16AM NCSC-FI warns of increased Akira ransomware attacks in December, targeting Finnish companies and wiping backups. The attacks exploited a vulnerability in Cisco VPNs, allowing unauthorized access to networks. The agency advises switching to offline backups and updating Cisco ASA and FTD to prevent further attacks. They emphasize the need for … Read more

Targeted F5 Vulnerability ‘Update’ Delivers Wiper to Israeli Victims

by

December 20, 2023 at 10:10AM The Israel National Cyber Directorate issued an urgent warning about a targeted email campaign impersonating F5 Networks, delivering dangerous wiper malware. The attacker capitalized on a critical F5 BIG-IP vulnerability, sending emails from “cert@f5.support” with an attached file named “update.zip.” The malware can delete F5 servers but cannot spread laterally. … Read more