IcedID Malware Adapts and Expands Threat with Updated BackConnect Module
Jul 28, 2023THNMalware / Cyber Threat The threat actors linked to the malware loader known as IcedID have made updates to the BackConnect (BC) module…
Month: July 2023
How to become eligible for Hybrid Pentesting?
Guaranteed income, fresh scope, and no researcher competition sounds like paradise to you? Stop dreaming right now and have a look at Intigriti’s new Hybrid…
Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins
Threat intelligence company Greynoise says it has observed the first attempts to exploit a recent critical remote code execution (RCE) vulnerability in Citrix ShareFile. A…
Hawai’i Community College pays ransomware gang to prevent data leak
The Hawaiʻi Community College has admitted that it paid a ransom to ransomware actors to prevent the leaking of stolen data of approximately 28,000 people.…
STARK#MULE Targets Koreans with U.S. Military-themed Document Lures
Jul 28, 2023THNCyber Attack / Malware An ongoing cyber attack campaign has set its sights on Korean-speaking individuals by employing U.S. Military-themed document lures to…
Industry Reactions to New SEC Cyber Incident Disclosure Rules: Feedback Friday
The US Securities and Exchange Commission (SEC) has adopted new cybersecurity incident disclosure rules for public companies, but there is concern that the new rules…
Hacker-Attacking Developers Using Weaponized MS Visual Studio
Recent reports suggest that threat actors have been spreading malicious versions of Microsoft Visual Studio, a highly familiar Integrated Development Environment (IDE) used by several…
A Data Exfiltration Attack Scenario: The Porsche Experience
As part of Checkmarx’s mission to help organizations develop and deploy secure software, the Security Research team started looking at the security posture of major…
Scottish university hit by Rhysida ransomware gang
Data supposedly stolen from the University of Western Scotland (UWS) in a ransomware attack has been put up for sale on the dark web by…
After TD Ameritrade, Maximus Delisted By Cl0p Ransomware
Following Maximus’ confirmation of utilizing MOVEit for internal and external file sharing, concerns arose as personal information may have been compromised by a third party.…
Zimbra XSS Vulnerability Enables Targeting By Threat Actors
A new vulnerability has been found in Zimbra Collaboration. The discovery of the Zimbra XSS vulnerability AKA Cross-Site Scripting (XSS) vulnerability in ZCS version 8.8.15,…
Zimbra Patches Exploited Zero-Day Vulnerability
Zimbra this week released patches for a cross-site scripting (XSS) vulnerability in Collaboration Suite that has been exploited in malicious attacks. Tracked as CVE-2023-37580, the…