The Joint Ransomware Task Force aims to enhance collaboration to identify ransomware groups and drive a comprehensive government and societal response to protect critical infrastructure and businesses.
The group’s access to exploits for vulnerabilities, such as CVE-2023-36802 and CVE-2023-29360, suggests ties to sophisticated developers and the purchase of external 64-bit executables rather than in-house development.
Adalanche provides immediate insights into the permissions of users and groups within an Active Directory. It’s an effective open-source tool for visualizing and investigating potential account, machine, or domain takeovers. Additionally, it helps identify and display any misconfigurations. What unique features make Adalanche stand out? “The best feature is the low user effort to get […]
A coalition of rebel groups in Myanmar is now in control of the city of Laukkaing — a notorious hub of online scamming operations near the border with China. Late on Thursday, Myanmar’s military government relinquished control of the city to the Three Brotherhood Alliance, which launched a surprise operation in Shan state, along the […]
The stolen funds are believed to be linked to North Korean hacking groups, such as Lazarus, who use cryptocurrency cyberattacks to bypass international sanctions and finance their weapons development program.
Dec 20, 2023NewsroomNetwork Security / Data Breach Ransomware groups are increasingly switching to remote encryption in their attacks, marking a new escalation in tactics adopted by financially motivated actors to ensure the success of their campaigns. “Companies can have thousands of computers connected to their network, and with remote ransomware, all it takes is one […]
Foreign interference groups are attempting to build and reach online audiences ahead of a number of significant elections next year, “and we need to remain alert,” Meta warned on Thursday. National elections are set to be held in the United States, United Kingdom and India — three of the world’s largest economies — as well […]
Nov 07, 2023NewsroomCyber Threat / Malware Multiple ransomware groups have begun to actively exploit recently disclosed flaws in Atlassian Confluence and Apache ActiveMQ. Cybersecurity firm Rapid7 said it observed the exploitation of CVE-2023-22518 and CVE-2023-22515 in multiple customer environments, some of which have been leveraged for the deployment of Cerber (aka C3RB3R) ransomware. Both vulnerabilities […]
Oct 16, 2023NewsroomVulnerability / Hacking Pro-Russian hacking groups have exploited a recently disclosed security vulnerability in the WinRAR archiving utility as part of a phishing campaign designed to harvest credentials from compromised systems. “The attack involves the use of malicious archive files that exploit the recently discovered vulnerability affecting the WinRAR compression software versions prior […]