Chips Down: Southeast Asian Gambling Sector Targeted by Bronze Starlight Cyber Attack An ongoing cyber attack originating from China is aiming its darts at the Southeast Asian gambling industry. The attackers aim to deploy Cobalt Strike beacons on the compromised systems to gain control. Cybersecurity firm, SentinelOne, suggests the TTPs (tactics, techniques, and procedures) hint
Read More
Main Points: – Cybersecurity researchers discovered a new post-exploit persistence method on iOS 16 – The technique can bypass apparent offline status and maintain access despite the device being on Airplane Mode – The attacker gains access after successfully exploiting the device and creates an artificial ‘sleep’ state – The tactic employs a custom SSH
Read More
Cybersecurity and Dynamic Work Environments Work environments have undergone considerable changes, significantly influencing cybersecurity and network monitoring. Developers frequently establish and dismantle systems, creating potential vulnerabilities by exposing services online. Staying updated about user activities, changes, and services can be challenging, as internet-based attack surfaces are often in a state of flux. Revolutions in Work
Read More
Russian Threat Actors Target Ministries of Foreign Affairs of NATO-Aligned Countries Russian Threat Actors on Cyber Siege: A Scandal More Riveting than a Telenovela Looks like someone’s been a little too busy in the shadows. Russian threat actors have been reportedly orchestrating a widespread campaign against none other than the ministries of foreign affairs of
Read More
Active Exploitation of a Critical Citrix ShareFile Storage Zones Controller Security Flaw Key Points The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has included a critical Citrix ShareFile flaw in its Known Exploited Vulnerabilities (KEV) catalog. The flaw, known as CVE-2023-24489, has a high CVSS score of 9.8—just a hair’s breadth away from a perfect
Read More
IT Teams’ Thorny Romance with Credential Theft Main Points: As we cross midway into 2023, credential theft continues to frustrate IT teams. Data’s value to cybercriminals and their evolving harmful techniques deepen the problem. The 2023 Verizon Data Breach Investigations Report shows 83% of breaches involve external actors – mostly financially driven. A Constant Pain
Read More
Several critical security flaws found in Ivanti Avalanche, a popular enterprise mobile device management solution. These flaws are collectively labeled as CVE-2023-32560 with a highest severity CVSS score of 9.8. The issues are due to stack-based buffer overflow in Avalanche WLAvanacheServer.exe v6.4.0.0. Cybersecurity firm, Tenable, discovered the vulnerabilities. Breaking Down the Avalanche: Ivanti Security Flaws
Read More
Citrix NetScaler Security Breach: A Net Pain for Enterprises Approximately 2,000 Citrix NetScaler instances have been compromised with a backdoor. The large-scale attack leveraged a recent critical security vulnerability. The vulnerability, known as CVE-2023-3519, has been exploited in an automated fashion. As per the advisory released by NCC Group, the attackers have placed web shells
Read More
The Web Just Got a Little More Sinister: Enter EvilProxy • Threat actors are using a new phishing-as-a-service (PhaaS) toolkit, fondly named EvilProxy, to conduct account takeover attacks. • High-ranking executives at prominent companies seem to be the main targets. • According to Proofpoint, these criminals have targeted thousands of Microsoft 365 user accounts. Fasten
Read More
Interpol shuts down ’16Shop’ Phishing-as-a-Service platform Main Points: – Interpol has taken down a PhaaS called 16Shop. – Arrests of three individuals in Indonesia and Japan have been made. – 16Shop was a major facilitator of cybercrimes, specializing in the sale of phishing kits. – 16Shop’s phishing attacks mainly targeted users of popular online services
Read MoreNo products in the cart.