Hunters Group Hits US Sales Firm, Australian Medical Supplier
The notorious Hunters group has allegedly added two new victims to their dark web portal: Rocky Mountain Sales in the United States and SSS Australia.…
Month: April 2024
The Los Angeles County Department of Health Services disclosed a data breach
The Los Angeles County Department of Health Services disclosed a data breach Pierluigi Paganini April 29, 2024 The Los Angeles County Department of Health Services…
29-Days From IcedID Infection to Dagon Locker Ransomware Deployment
In a sophisticated cyberattack that unfolded over 29 days, cybersecurity analysts have meticulously traced the steps of threat actors from the initial infection with IcedID…
KageNoHitobito Ransomware Attacking Windows Users
A new ransomware named KageNoHitobito has been targeting Windows users across various countries. It encrypts their data and demands a ransom through sophisticated means. This…
Multiple Brocade SANnav SAN Management SW flaws allow device compromise
Multiple Brocade SANnav SAN Management SW flaws allow device compromise Pierluigi Paganini April 29, 2024 Multiple flaws in Brocade SANnav storage area network (SAN) management…
Find Malware With ANY RUN Threat Intelligence YARA Search
YARA is a rule-based malware detection tool that utilizes regular expressions and textual/binary signatures to create descriptions (rules) for identifying malicious files. Within ANY.RUN TI,…
Okta Warns of Credential Stuffing Attacks Using Proxy Services
Okta has issued a warning about the increasing prevalence of credential-stuffing attacks. These attacks, which leverage stolen user credentials to gain unauthorized access to accounts,…
NoName Ransomware Group Targets Moldova In Cyberattack
The notorious NoName ransomware group this time has allegedly set its sights on Moldova, targeting key government websites in what appears to be a strategic…
Fileless .NET Based Code Injection Attack Delivers AgentTesla Malware
A recent malware campaign used a VBA macro in a Word document to download and execute a 64-bit Rust binary. This binary employs fileless injection…
Closing the cybersecurity skills gap with upskilling programs
The list of skills technologists and organizations need to succeed grows with each new tech advancement, according to Pluralsight. But for many organizations, budgets and…
Dependency Confusion Vulnerability Found in an Archived Apache Project
Researchers discovered a vulnerability in an archived Apache project, highlighting the risk of using outdated third-party dependencies, where attackers can exploit the way package managers…
Prompt Fuzzer: Open-source tool for strengthening GenAI apps
Prompt Fuzzer is an open-source tool that evaluates the security of your GenAI application’s system prompt against dynamic LLM-based threats. Prompt Fuzzer features Simulation of…