Chinese APT Group Infiltrates US ISPs In Attack Campaign
As per recent media reports, a Chinese APT group has been observed targeting multiple United States (US) Internet Service Providers (ISPs) as part of an attack campaign. The primary aim of such attacks is to acquire sensitive information. In this article, we’ll dive into the details of the ISP cyber ... Read More
Iranian APT Facilitating Remote Access To Target NetworksÂ
As per recent reports, an Iranian Advanced Persistent Threat (APT) hacker is now playing a facilitator role in aiding remote access to target networks. The Iranian APT hacker is believed to have affiliations with the Ministry of Intelligence and Security (MOIS). In this article, we’ll dive into these Middle East ... Read More
FOUNDATION Breach: Default Credentials Exploited By Hackers
Huntress, a cybersecurity platform, has recently uncovered the FOUNDATION breach in which threat actors are leveraging default credentials. As per media reports, the current targets of these attacks appear to be different providers within the construction sector. In this article, we’ll cover how hackers are able to conduct these construction ... Read More
Microsoft Alert: New INC Ransomware Targets US Healthcare
As per a recent Microsoft alert, a threat actor with malicious financial motives has been observed leveraging a new INC ransomware strain to target the health sector in the United States (US). In this article, we’ll dive into the details and determine who the threat actor is and how such ... Read More
GitLab Patches: Severe SAML Authentication Bypass Flaw Fixed
A critical SAML authentication bypass flaw was recently identified in GitLab’s Community Edition (CE) and Enterprise Edition (EE). As of now, GitLab patches aiming to fix the flaw have been released; however, if the fixes had not been released, potential exploits of the flaw may have been detrimental. In this ... Read More
Raptor Train Botnet: Over 200,000 SOHO Devices Compromised
As per recent media reports, cybersecurity researchers have discovered an unprecedented botnet that is likely being operated by a Chinese nation-state threat actor. The Raptor Train botnet is made of small office/home office (SOHO) and Internet-of-Things (IoT) devices. In this article, we’ll dive into the details of the botnet and ... Read More
WhatsUp Gold Exploit: PoC Release Prevails As The Root CauseÂ
As per recent media reports, a publicly available Proof-of-Concept (PoC) pertaining to Progess’s WhatsUp Gold is likely being used by threat actors for exploiting the software. Malicious activities are said to have started five hours after the PoC was released. In this article, we’ll dive into the details of the ... Read More
Malware Attacks: Iranian Hackers Target Iraqi GovernmentÂ
Iqra and Iran are two nations that have experienced conflicts throughout their existence, and now those conflicts have become digital in the form of malware attacks. As per recent reports, the Iraqi government has fallen prey to malware attacks orchestrated by OilRig, an Iranian state-sponsored threat actor group. In this ... Read More
Singapore Cybercrime Arrests: Six Criminals Caught By SPFÂ
In light of recent cybercrime events, the Singapore Police Force (SPF) has arrested six threat actors. These Singapore cybercrime arrests came as a result of multiple raids at varying locations conducted by 160 law enforcement officials. In this article, we’ll dive into the details of these arrests and uncover who ... Read More
HTTP Headers Phishing Campaigns Used For Credential Theft Â
With rapid advancements in technology, threat actor attack methodologies are now evolving at an unprecedented pace. Cybersecurity experts have recently warned of online HTTP headers phishing campaigns that are being launched to steal credentials. In this article, we’ll take a detailed look at these credential harvesting attacks and uncover tools ... Read More
