Cyware Alerts - Hacker News
Hacker Uses OAuth Apps for Phishing on Microsoft Exchange Servers
/https://cyware-ent.s3.amazonaws.com/image_bank/5f6f_shutterstock_1851526309.jpg "Hacker Uses OAuth Apps for Phishing on Microsoft Exchange Servers - Cyware Alerts - Hacker News")
Cyber adversaries have taken over enterprise Exchange Servers to launch a spam campaign aimed at signing people up for bogus subscriptions. The investigation revealed that the threat actors leveraged unsecured administrator accounts to gain initial access to highly vulnerable accounts that aren’t M ... Read More
BlackCat’s Exmatter Upgraded With New Info-Stealing & Stealth Capabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/d2db_shutterstock_1517016749.jpeg "BlackCat’s Exmatter Upgraded With New Info-Stealing & Stealth Capabilities - Cyware Alerts - Hacker News")
The BlackCat ransomware gang is now attacking targets with an upgraded version of its data exfiltration tool, named Exmatter, adding more stealth to its operation. Further, it has added 'Eraser' feature to corrupt processed files along with 'Self-destruct' configuration option to delete and qu ... Read More
Attacks via Domain Shadowing on the Rise
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_334604327.jpg "Attacks via Domain Shadowing on the Rise - Cyware Alerts - Hacker News")
Unit 42 researchers spotted 12,197 cases of domain shadowing between April and June. The phishing campaign compromised 16 domains to build 649 sub-domains. Shadow domains are difficult for the victims to detect because they do not interfere with the regular operations of the hacked domains. Ac ... Read More
LockBit Builder Leaked Online by Angry Developer
/https://cyware-ent.s3.amazonaws.com/image_bank/4cff_shutterstock_1613302090.jpg "LockBit Builder Leaked Online by Angry Developer - Cyware Alerts - Hacker News")
An angry developer leaked the builder for LockBit Black (version 3.0) on Twitter. The builder enables anyone to rapidly build the executables necessary for launching a ransomware operation. For staying protected, organizations are suggested to invest more in cybersecurity solutions.
Gaming Sector Under Relentless Attack
/https://cyware-ent.s3.amazonaws.com/image_bank/a7d8_shutterstock_1439856428.jpg "Gaming Sector Under Relentless Attack - Cyware Alerts - Hacker News")
Hackers are relentlessly targeting the gaming sector. In less than a month, hackers have carried out five major attacks on gamers and gaming platforms; 2K Games became the recent victim. The gaming industry has been a bastion for cyberattackers, owing to its exponential growth over the years, ... Read More
MFA Fatigue - New Social Engineering Attack Takes Toll on Corporate Firms
/https://cyware-ent.s3.amazonaws.com/image_bank/0bbd_shutterstock_2129487698.jpg "MFA Fatigue - New Social Engineering Attack Takes Toll on Corporate Firms - Cyware Alerts - Hacker News")
MFA Fatigue is coming out as a new technique for cybercriminals excelling in social engineering attacks. They are targeting big firms to obtain corporate credentials. This method is turning out to be more successful as it does not need malware or phishing infrastructure.
ChromeLoader Campaign Spreads Several Malware
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_80805568.jpg "ChromeLoader Campaign Spreads Several Malware - Cyware Alerts - Hacker News")
The multi-stage malware attack chain hijacks the browser and redirects targets to advertising sites, for the threat actors to generate revenue from ad clicks and views.
UAC-0113, a Sandworm's Affiliate, Targets Ukrainian Telcos
/https://cyware-ent.s3.amazonaws.com/image_bank/1cd1_shutterstock_2131784205.jpeg "UAC-0113, a Sandworm's Affiliate, Targets Ukrainian Telcos - Cyware Alerts - Hacker News")
Russian state-sponsored hacker group Sandworm appears to have been involved in targeting Ukrainian entities with malware by masquerading as telecommunication providers. In the attack campaign, attackers used domains pretending to belong to Ukrainian telecom companies Datagroup, Kyivstar, and EuroTr ... Read More
Hackers Steal Millions from Healthcare - Warns FBI
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_103655729.jpg "Hackers Steal Millions from Healthcare - Warns FBI - Cyware Alerts - Hacker News")
The FBI published an alert about threat actors targeting healthcare payment processors to transfer funds to their bank accounts. They have already stolen $4.6 million, this year alone. Between February and April, threat actors used a variety of techniques to steal $3.1 million. $700,000, and $840,0 ... Read More
PrivateLoader and Ruzki PPI - What's the Connection?
/https://cyware-ent.s3.amazonaws.com/image_bank/b6b6_shutterstock_1030883866.jpg "PrivateLoader and Ruzki PPI - What's the Connection? - Cyware Alerts - Hacker News")
Upon tracking PrivateLoader’s network infrastructure and activities associated with ruzki PPI, SEKOIA researchers observed an overlap between the former’s C2 servers and the latter’s URLs offered to subscribers.
Defend Against Threats with Cyber Fusion
Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.
Learn More
Trending Tags
