The CISA, FBI, and NSA released a joint advisory that warns critical infrastructure entities as well as the U.S. food and agriculture sector against BlackMatter ransomware intrusions. It is believed that DarkSide has re-emerged as BlackMatter. Security analysts recommend keeping an eye on the TTPs ... Read More

In new research, security experts suggest that Karma ransomware is an evolved or rebranded version of a long chain consisting of multiple malware variants. But, Is Karma the new Nemty? Experts reveal more in this report.

Trend Micro has uncovered a new franchise RaaS model, evincing deep connections between XingLocker, AstroLocker Team, and Mount Locker, which is at the top of the hierarchy. Researchers observed a typical distribution of resources among the malware, pointing towards the use of a shared infrastructu ... Read More

Experts discovered a new side-channel attack impacting all AMD processors. H ackers can collect sensitive information, such as passwords and encryption keys, from memory associated with other apps. R esearchers suggest devices must be updated with the latest OS patches.

The TrickBot gang reportedly added two affiliates dubbed Hive0106 (aka TA551) and Hive0107 to inflict attacks on corporate networks. Looking at the rise in attack attempts, researchers urge enabling multi-factor authentication as a top strategy to safeguard themselves from such threats.

In a Q3 2021 report from PhishLabs, researchers uncovered that BazaLoader accounted for 24.7% of attacks, making it the most reported malware deploying payloads.

The scam, dubbed CryptoRom by Sophos researchers, has targeted victims across Asia, the U.S., and Europe. The criminals are using dating apps such as Tinder, Bumble, and Grindr to attract the victims.

Microsoft revealed that it thwarted a massive DDoS attack of 2.4Tbps. The attack leveraged Microsoft Azure and was launched against a European customer. 

A recent study by Ermetic revealed that 90% of AWS S3 buckets are susceptible to attacks due to compromised identities. This can expose data objects to ransomware threats. 

Unit 42 discovered hackers exploiting an open-source service called Interactsh; the tool generates desired domain names to help users test whether an exploit is successful. The tool allows anyone to generate specific URLs for testing on HTTP attempts and DNS queries, which help them test whet ... Read More