Security Operations ESET Identifies Significant Vulnerabilities Exploited by the Russian RomCom Hacking Group Chris Riotta (@chrisriotta) • November 26, 2024 ESET reports the discovery of critical vulnerabilities in Mozilla products and Windows, exploited by the RomCom group to deploy a backdoor. (Image: Mozilla Foundation) Two critical vulnerabilities affecting Mozilla products…
In a recent cybersecurity incident, Volexity uncovered significant insights into a sophisticated intrusion that targeted one of its clients. The investigation initiated after a subsequent breach allowed Volexity to gather more comprehensive logs of the hackers’ activities, ultimately leading to the identification of the source of the attack. Analysts determined…
The BianLian ransomware group has undergone a significant transformation, transitioning into a data theft extortion organization, as highlighted in a recent advisory from the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Australian Cyber Security Centre. This shift marks a departure from their previous double-extortion strategies that…
In a troubling revelation, the cyber espionage group codenamed MoustachedBouncer, which has remained undocumented until now, has been linked to a series of attacks targeting foreign embassies in Belarus. ESET security researcher Matthieu Faou notes that this group has likely been active since 2014 and has continuously improved its techniques,…
Human Rights Activists Targeted by New Phishing Campaign in Morocco and Western Sahara A new cybersecurity threat has emerged in Morocco and the Western Sahara, particularly targeting human rights activists associated with the Sahrawi Arab Democratic Republic (SADR). This threat actor, identified by Cisco Talos as Starry Addax, employs sophisticated…
In 2023, personal identification data has become alarmingly less private, with a staggering 81% of Americans experiencing a compromise of their information through various data breaches. This revelation comes from James E. Lee, chief operating officer of the Identity Theft Resource Center, a California-based nonprofit that aims to mitigate the…
Kremlin-Backed Malware Targets Ukrainian Military Recruits Recent findings from Google researchers reveal the emergence of a sophisticated operation allegedly backed by the Kremlin, aimed at targeting individuals considering enlistment in the Ukrainian military. This disturbing campaign utilizes information-stealing malware designed for both Windows and Android platforms, primarily disseminated through Telegram…
Albanian Organizations Targeted by Wiper Malware in Renewed Cyber Offensive A new surge of cyberattacks has been observed against Albanian organizations, primarily utilizing a destructive wiper malware identified as No-Justice. This attack, reported by ClearSky, a cybersecurity firm, has led to significant disruptions for the victims by crashing their Windows…
Fraud Management & Cybercrime, Ransomware Emerging Ransomware Group Utilizes Rust-Based Tools in New Attack Strategies Prajeet Nair (@prajeetspeaks) • October 23, 2024 Image: Shutterstock A newly formed ransomware group has emerged with advanced capabilities, reportedly developing tools designed to bypass traditional security measures. This burgeoning threat is distinguished by its…
