Microsoft and Fortra to Take Down Malicious Cobalt Strike Infrastructure
Cobalt Strike is a legitimate post-exploitation tool designed by Raphael Mudge of Fortra for adversary simulation but it has also been abused by cybercriminals.
New Dark Web Market Styx: Focuses on Money Laundering, Identity Theft
Styx has quickly gained traction as a hub for various illicit activities, following the recent seizure of the Genesis dark web market.
New Strain of Rorschach Ransomware Targeting US- Firms
Rorschach ransomware boasts advanced encryption technology and can spread automatically on the machine if executed on a domain controller.
Beware of new YouTube phishing scam using authentic email address
Watch out for a new YouTube phishing scam and ignore any email from YouTube that claims to provide details about “Changes in YouTube rules and policies | Check the Description.”
WiFi Flaws Allow Network Traffic Interception on Linux, iOS, and Android
The findings about WiFi flaws are to be presented at the Usenix Security Symposium.
New VPN Malvertising Attack Drops OpcJacker Crypto Stealer
Researchers warned that the campaign works through a network of fake websites that promote seemingly harmless crypto apps and other software.
Zimbra email platform vulnerability exploited to steal European govt emails
Researchers have noted that attackers are targeting a medium-severity Zimbra vulnerability that the company patched in version 9.0.0 Patch 24, one year ago.
Beware of MacStealer: A New Malware Targeting macOS Catalina Devices
The new MacStealer malware is being advertised on a notorious Russian hacker and cybercrime forum.
Mélofée: The Latest Malware Targeting Linux Servers
An unidentified Chinese APT group is suspected of operating the Mélofée malware.
Hacker Returns $200 Million Stolen from Euler Finance
Euler Finance was hacked on March 13, 2023, and around $197 million worth of cryptocurrency was stolen, including $135.8 million stETH, $33.8 million USDC, $18.5 million WBTC, and $8.7 million DAI.