Threat Actor Abuses Cloudflare Tunnels to Deliver RATs

CategoryDetailsThreat ActorsUnattributed cybercriminal group using Cloudflare Tunnel abuse to deliver malware, primarily targeting organizations for…

Grandoreiro, the global trojan with grandiose goals

CategoryDetailsThreat ActorsBrazilian cybercriminal group operating Grandoreiro, part of the Tetrade umbrella.Campaign OverviewBanking trojan targeting financial…

The Crypto Game of Lazarus APT: Investors vs. Zero-days

CategoryDetailsThreat ActorsLazarus APT, BlueNoroff subgroupCampaign OverviewAttackers used a fake decentralized finance (DeFi) NFT-based tank game…

OSINT Updates for November 22 , 2024

https://twitter.com/SecAI_AI/status/1859770564296225267 https://twitter.com/ClefTheHacker/status/1859892350392422731 https://twitter.com/FalconFeedsio/status/1859820207201714499 https://twitter.com/cyberfeeddigest/status/1859868387976806582 https://twitter.com/cyberfeeddigest/status/1859876230989857234 https://twitter.com/DailyRansomware/status/1859872936619802914 https://twitter.com/jamessecuritytr/status/1859854138881999316 https://twitter.com/DailyRansomware/status/1859845914887704755

WannaCry 2.0 ransomware attacks continue…

CategoryDetailsThreat ActorsNot explicitly named, but associated with the WannaCry ransomware campaign.Campaign OverviewAggressive ransomware attack targeting…

Microsoft seizes 240 websites used by Egyptian phishing-as-a-service operation ‘ONNX’

Category Details Threat Actors Abanoub Nady (a.k.a. MRxC0DER) and four unidentified individuals. Campaign Overview Operated…

'PopeyeTools' marketplace for stolen credit cards disrupted by feds

Category Details Threat Actors Abdul Ghaffar (25, Pakistan), Abdul Sami (35, Pakistan), Javed Mirza (37,…

750,000 Patients' Medical Records Exposed After Data Breach at French Hospital

Key DetailDescriptionThreat ActorsHacker "nears"Campaign OverviewData breach exposing medical records of over 750,000 patients, potentially 1.5…

Financially Motivated Threat Actor Leveraged Google Docs and Weebly Services to Target Telecom and Financial Sectors

Key DetailDescriptionThreat ActorsFinancially motivated attackers targeting telecommunications and financial sectors.Campaign OverviewPhishing campaign leveraging Google Docs…

‘SteelFox’ Malware Blitz Infects 11K Victims With Bundle of Pain

CategoryDetailsThreat ActorsUnidentified; deploying the SteelFox malware campaign.Campaign OverviewActive since February 2023, SteelFox is a mass-targeting…