Blog - Cyber Security Informer

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Education Accountability Telecommunications

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) warns of a North Korea-linked cyberespionage group tracked as ARCHIPELAGO. TAG believes that the ARCHIPELAGO group is a subset of a threat actor tracked by Mandiant as APT43. ” reads the analysis published by Google TAG.

Phishing

Phishing Media Passwords Malware

Attackers create phishing lures with standard tools in Google Docs to steal credentials

SC Magazine

JUNE 17, 2021

Researchers on Thursday reported that hackers are using standard tools within Google Docs/Drive to lead unsuspecting victims to fraudulent websites, stealing credentials in the process. In a blog post, Avanan said hackers are bypassing static link scanners by hosting their attacks on publicly-known services.

Phishing

Phishing Social Engineering Engineering CISO

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 8, 2023

Unlike other ALPHV affiliates, UNC4466 doesn’t rely on stolen credentials for initial access to victim environments. The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report.

Backups

Backups Spyware Ransomware Education

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware

Spyware Ransomware Malware Data breaches

BlackCat (aka ALPHV) Ransomware is Increasing Stakes up to $2,5M in Demands

Security Affairs

JULY 11, 2022

BlackCat (aka ALPHV) Ransomware gang introduced an advanced search by stolen victim’s passwords, and confidential documents. They introduced an advanced search by stolen victim’s passwords, and confidential documents leaked in the TOR network. Additional info is available in the post published by Resecurity on its blog: [link].

Ransomware

Ransomware Passwords Data breaches Technology

Cyber News Rundown: Cryptomining Malware Resurgent

Webroot

JANUARY 25, 2021

The data was leaked in an October data breach, which Nitro confirmed, and was bundled for auction with a high price tag. The group claims to have stolen the database during a breach at another photo site, 123rf. The post Cyber News Rundown: Cryptomining Malware Resurgent appeared first on Webroot Blog.

Malware

Malware Cryptocurrency Ransomware Data breaches

Lazarus targets defense industry with ThreatNeedle

SecureList

FEBRUARY 25, 2021

Google TAG has recently published a post about a campaign by Lazarus targeting security researchers. After gaining an initial foothold, the attackers gathered credentials and moved laterally, seeking crucial assets in the victim environment. Credential gathering. We named Lazarus the most active group of 2020. Lateral movement.

Malware

Malware Phishing Passwords Encryption

A Decade of Have I Been Pwned

Troy Hunt

DECEMBER 3, 2023

The very next day I published a blog post about how I made it so fast to search through 154M records and thus began a now 185-post epic where I began detailing the minutiae of how I built this thing, the decisions I made about how to run it and commentary on all sorts of different breaches. And then ensured could never happen again.

Data breaches

Data breaches Passwords Internet Internet

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

Every week the best security articles from Security Affairs are free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here.

Spyware

Spyware Surveillance Artificial Intelligence Data breaches

Why access management needs to evolve beyond passwords

CyberSecurity Insiders

OCTOBER 13, 2021

This blog was written by an independent guest blogger. Two in 10 individuals said that they weren’t sure whether those with whom they shared their passwords went on to share those same credentials with others. credential compromises every year. That ’ s nearly double its price tag of $381,920 back in 2015.

Passwords

Passwords Accountability Data breaches Authentication

Password Hash Cracking, User Cloning, and User Impersonation: Three Risks Every SAP Customer Should Know

Security Boulevard

OCTOBER 19, 2022

The easiest (and a significantly profitable) way for attackers to get into a system is logging in with valid user credentials. According to a recent report, breaches that are caused by stolen or compromised credentials are not only responsible for nearly 20% of breaches 1 , they are also the most challenging to identify and contain.

Passwords

Passwords Risk Phishing Architecture

Black Hat USA 2023 NOC: Network Assurance

Cisco Security

AUGUST 28, 2023

Clear Text authentication still exists in 2023 Although not directly related to malware infection, we did discover a few other interesting findings during our threat hunt, including numerous examples of clear text traffic disclosing email credentials or authentication session cookies for variety of applications.

Wireless

Wireless DNS Mobile Technology

Cyber Security Informer

Google TAG warns of Russia-linked APT groups targeting Ukraine

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Trending Sources

Attackers create phishing lures with standard tools in Google Docs to steal credentials

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

BlackCat (aka ALPHV) Ransomware is Increasing Stakes up to $2,5M in Demands

Cyber News Rundown: Cryptomining Malware Resurgent

Lazarus targets defense industry with ThreatNeedle

A Decade of Have I Been Pwned

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Why access management needs to evolve beyond passwords

Password Hash Cracking, User Cloning, and User Impersonation: Three Risks Every SAP Customer Should Know

Black Hat USA 2023 NOC: Network Assurance

Stay Connected