Threat Actor Abuses Cloudflare Tunnels to Deliver RATs
CategoryDetailsThreat ActorsUnattributed cybercriminal group using Cloudflare Tunnel abuse to deliver malware, primarily targeting organizations for…
Grandoreiro, the global trojan with grandiose goals
CategoryDetailsThreat ActorsBrazilian cybercriminal group operating Grandoreiro, part of the Tetrade umbrella.Campaign OverviewBanking trojan targeting financial…
The Crypto Game of Lazarus APT: Investors vs. Zero-days
CategoryDetailsThreat ActorsLazarus APT, BlueNoroff subgroupCampaign OverviewAttackers used a fake decentralized finance (DeFi) NFT-based tank game…
OSINT Updates for November 22 , 2024
https://twitter.com/SecAI_AI/status/1859770564296225267 https://twitter.com/ClefTheHacker/status/1859892350392422731 https://twitter.com/FalconFeedsio/status/1859820207201714499 https://twitter.com/cyberfeeddigest/status/1859868387976806582 https://twitter.com/cyberfeeddigest/status/1859876230989857234 https://twitter.com/DailyRansomware/status/1859872936619802914 https://twitter.com/jamessecuritytr/status/1859854138881999316 https://twitter.com/DailyRansomware/status/1859845914887704755
WannaCry 2.0 ransomware attacks continue…
CategoryDetailsThreat ActorsNot explicitly named, but associated with the WannaCry ransomware campaign.Campaign OverviewAggressive ransomware attack targeting…
Microsoft seizes 240 websites used by Egyptian phishing-as-a-service operation ‘ONNX’
Category Details Threat Actors Abanoub Nady (a.k.a. MRxC0DER) and four unidentified individuals. Campaign Overview Operated…
'PopeyeTools' marketplace for stolen credit cards disrupted by feds
Category Details Threat Actors Abdul Ghaffar (25, Pakistan), Abdul Sami (35, Pakistan), Javed Mirza (37,…
750,000 Patients' Medical Records Exposed After Data Breach at French Hospital
Key DetailDescriptionThreat ActorsHacker "nears"Campaign OverviewData breach exposing medical records of over 750,000 patients, potentially 1.5…
Financially Motivated Threat Actor Leveraged Google Docs and Weebly Services to Target Telecom and Financial Sectors
Key DetailDescriptionThreat ActorsFinancially motivated attackers targeting telecommunications and financial sectors.Campaign OverviewPhishing campaign leveraging Google Docs…
‘SteelFox’ Malware Blitz Infects 11K Victims With Bundle of Pain
CategoryDetailsThreat ActorsUnidentified; deploying the SteelFox malware campaign.Campaign OverviewActive since February 2023, SteelFox is a mass-targeting…