Cyware Alerts - Hacker News

Hacker Uses OAuth Apps for Phishing on Microsoft Exchange Servers

Hacker Uses OAuth Apps for Phishing on Microsoft Exchange Servers - Cyware Alerts - Hacker News
Cyber adversaries have taken over enterprise Exchange Servers to launch a spam campaign aimed at signing people up for bogus subscriptions. The investigation revealed that the threat actors leveraged unsecured administrator accounts to gain initial access to highly vulnerable accounts that aren’t M ... Read More

BlackCat’s Exmatter Upgraded With New Info-Stealing & Stealth Capabilities

BlackCat’s Exmatter Upgraded With New Info-Stealing & Stealth Capabilities - Cyware Alerts - Hacker News
The BlackCat ransomware gang is now attacking targets with an upgraded version of its data exfiltration tool, named Exmatter, adding more stealth to its operation. Further, it has added 'Eraser' feature to corrupt processed files along with 'Self-destruct' configuration option to delete and qu ... Read More

Attacks via Domain Shadowing on the Rise

Attacks via Domain Shadowing on the Rise - Cyware Alerts - Hacker News
Unit 42 researchers spotted 12,197 cases of domain shadowing between April and June. The phishing campaign compromised 16 domains to build 649 sub-domains. Shadow domains are difficult for the victims to detect because they do not interfere with the regular operations of the hacked domains. Ac ... Read More

LockBit Builder Leaked Online by Angry Developer

LockBit Builder Leaked Online by Angry Developer - Cyware Alerts - Hacker News
An angry developer leaked the builder for LockBit Black (version 3.0) on Twitter. The builder enables anyone to rapidly build the executables necessary for launching a ransomware operation. For staying protected, organizations are suggested to invest more in cybersecurity solutions.

Gaming Sector Under Relentless Attack

Gaming Sector Under Relentless Attack - Cyware Alerts - Hacker News
Hackers are relentlessly targeting the gaming sector. In less than a month, hackers have carried out five major attacks on gamers and gaming platforms; 2K Games became the recent victim. The gaming industry has been a bastion for cyberattackers, owing to its exponential growth over the years, ... Read More

MFA Fatigue - New Social Engineering Attack Takes Toll on Corporate Firms

MFA Fatigue - New Social Engineering Attack Takes Toll on Corporate Firms - Cyware Alerts - Hacker News
MFA Fatigue is coming out as a new technique for cybercriminals excelling in social engineering attacks. They are targeting big firms to obtain corporate credentials. This method is turning out to be more successful as it does not need malware or phishing infrastructure.

ChromeLoader Campaign Spreads Several Malware

ChromeLoader Campaign Spreads Several Malware - Cyware Alerts - Hacker News
The multi-stage malware attack chain hijacks the browser and redirects targets to advertising sites, for the threat actors to generate revenue from ad clicks and views. 

UAC-0113, a Sandworm's Affiliate, Targets Ukrainian Telcos

UAC-0113, a Sandworm's Affiliate, Targets Ukrainian Telcos - Cyware Alerts - Hacker News
Russian state-sponsored hacker group Sandworm appears to have been involved in targeting Ukrainian entities with malware by masquerading as telecommunication providers. In the attack campaign, attackers used domains pretending to belong to Ukrainian telecom companies Datagroup, Kyivstar, and EuroTr ... Read More

Hackers Steal Millions from Healthcare - Warns FBI

Hackers Steal Millions from Healthcare - Warns FBI - Cyware Alerts - Hacker News
The FBI published an alert about threat actors targeting healthcare payment processors to transfer funds to their bank accounts. They have already stolen $4.6 million, this year alone. Between February and April, threat actors used a variety of techniques to steal $3.1 million. $700,000, and $840,0 ... Read More

PrivateLoader and Ruzki PPI - What's the Connection?

PrivateLoader and Ruzki PPI - What's the Connection? - Cyware Alerts - Hacker News
Upon tracking PrivateLoader’s network infrastructure and activities associated with ruzki PPI, SEKOIA researchers observed an overlap between the former’s C2 servers and the latter’s URLs offered to subscribers.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags