The cyber threat actor known as Muddled Libra has been identified as actively targeting software-as-a-service (SaaS) applications and cloud service providers (CSPs) with the intent to exfiltrate confidential information. This malicious activity underscores an increasing trend where organizations store diverse sets of data within SaaS platforms and leverage CSP services,…
Recent developments in AI security highlight the escalating complexity of the AI supply chain, a critical aspect often overlooked in cybersecurity discussions. This emerging area involves numerous interconnected components, including data sources, machine learning models, application programming interfaces (APIs), and the underlying infrastructure, all situated within increasingly dynamic cloud environments.…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant security vulnerability affecting Apache Flink to its Known Exploited Vulnerabilities (KEV) catalog. This announcement, made on Thursday, highlights the potential risks associated with an open-source framework widely used for unified stream processing and batch processing, amid reports…
North Korean State-Sponsored Group Partners with Ransomware Actors in Recent Cyberattack A recent report from Palo Alto Networks’ Unit 42 highlights alarming developments in the cybersecurity landscape, revealing a collaboration between the North Korean state-sponsored threat group known as Jumpy Pisces and the financially motivated Play ransomware group. This incident…
RedTail Malware Targets Palo Alto Networks Firewalls in Latest Cyber Attack Recently, cybersecurity analysts have identified an alarming development involving the RedTail cryptocurrency mining malware, which has integrated a newly disclosed vulnerability affecting Palo Alto Networks firewalls into its repertoire of exploits. This vulnerability, cataloged as CVE-2024-3400, has received a…
Israeli Higher Education and Tech Sectors Targeted in Sophisticated Cyber Attacks Israeli higher education and technology institutions have faced a wave of cyber attacks that began in January 2023, with attackers aiming to deploy previously unknown wiper malware. These targeted breaches included attempted data theft and the installation of malware…
Recent reports reveal that the Mustang Panda hacking group, linked to China, has executed a cyberattack aimed at a government entity in the Philippines. This incident occurs amidst escalating tensions between the Philippines and China concerning territorial disputes in the South China Sea, highlighting the geopolitical implications of cybersecurity in…
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Hackers Breach Software Libraries to Distribute Malware Akshaya Asokan (asokan_akshaya) • October 25, 2024 Recent investigations by security experts have revealed a disturbing trend involving backdoored software packages found within the NPM library, indicative of an ongoing cyber operation…
A significant extortion campaign has emerged, targeting various organizations by exploiting publicly accessible environment variable files (commonly ending in .env) that contain sensitive credentials for cloud and social media applications. This alarming trend underscores the vulnerabilities in data security practices across industries. According to a report by Palo Alto Networks’…
