Main Points: Europol announced the takedown of Ragnar Locker ransomware’s infrastructure. The arrest of a “key target” associated with the ransomware has been made in France. The action was carried out between 16 and 20 October in multiple countries including Czechia, Spain, and Latvia. The main perpetrator, suspected of being a developer for the group,
Read More
Okta’s Security Gets Oktackled: Cybersecurity Incident Update Main Points Okta disclosed a new security incident on Friday. The unidentified threat actor had accessed Okta’s support case management system using stolen credentials. David Bradbury, Okta’s chief security officer, stated the threat actor could view files uploaded by some Okta customers as part of recent support cases.
Read More
Malvertising Campaign Targets Google Ads Users Campaign Overview An innovative malvertising campaign is discovered, which makes use of Google Ads to direct users to deceptive landing pages and distribute succeeding-stage payloads. These findings are credited to Malwarebytes, and they have pointed out the uniqueness of this campaign regarding its method to fingermark users and disseminate
Read More
The Internet of Things: Transformation Through a Connectivity Revolution Main Points The rapid advancement of technology is altering global business conduct via the Internet of Things (IoT). The power of IoT is transformational, assisting companies to make data-driven decisions. IoT accelerates efficiencies, streamlines operations, and meets demands of a globally competitive marketplace. The Upgraded Business
Read More
New Malware on the Block: Meet ExelaStealer A recent addition to the infostealer landscape, ExelaStealer, threatens to steal sensitive data from compromised Windows systems. ExelaStealer is largely open-source, with paid customizations available as per the threat actor’s offers, as reported by Fortinet FortiGuard Labs researcher James Slaughter. ExelaStealer Enters the Malware Ring Walk into the
Read More
U.S. Gov Seizes North Korean IT Workers’ Websites, Funded Missile Programs The U.S. government seizes 17 website domains related to North Korean IT operatives. The seizure is part of the clampdown on illicit schemes believed to fund North Korea’s ballistic missile program. The U.S. Department of Justice (DoJ) announced that it also confiscated around $1.5
Read More
– Google announced an update to Google Play Protect which includes real-time scanning at the code level. – The update aims to prevent the downloading and installation of new malicious apps on Android devices. – The updated Google Play Protect now recommends a real-time app scan when installing apps that haven’t been scanned before. Google
Read More
Emphasizing the Importance of Continuous Vulnerability Scanning in the Digital Age Main Points: The time between a vulnerability being discovered and being exploited by hackers is significantly short (only 12 days). Continuous vulnerability scanning has become increasingly important for organizations who are aware of this fact. The infrequent, one-off scans can leave organizations exposed and
Read More
The Slick Moves of the OilRig Threat Actor – The OilRig threat actor, known to have links with Iran, targeted an undisclosed Middle Eastern government in a campaign that lasted from February to September 2023. – The campaign saw the theft of files and passwords, with one incident even deploying a PowerShell Backdoor aptly named
Read More
# North Korean Threat Actors Exploit JetBrains Security Flaw: How Secure is Your Server? ## Overview – North Korean threat actors are exploiting a severe security flaw in JetBrains TeamCity. – The exploitation is linked to Diamond Sleet and Onyx Sleet groups. – Microsoft warns of potential breaches to vulnerable servers. ## Details on the
Read MoreNo products in the cart.