Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks

Category Details Threat Actors • No specific threat actors mentioned. Campaign Overview • Release of…

CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation

Category Details Threat Actors • China-linked APT41 (previously attributed to exploiting CVE-2021-44207 in 2021). Campaign…

North Korean Hackers Pull Off $308M Bitcoin Heist from Crypto Firm DMM Bitcoin

Category Details Threat Actors • North Korean cyber actors (affiliated with TraderTraitor, Jade Sleet, UNC4899,…

Severe Path Traversal Vulnerability in Adobe ColdFusion (CVE-2024-53961), Update Now

Category Details Threat Actors • No specific threat actor mentioned, but there is a concern…

Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts

Category Details Threat Actors • Unknown, no direct attribution to a specific threat group. Campaign…

Dark Web Profile: Bashe (APT73)

Category Details Threat Actors • Bashe (previously APT73 or Eraleig) – a ransomware group emerging…

Python Malware in Zebo-0.1.0 and Cometlogger-0.1 Found Stealing User Data

Category Details Threat Actors • Unknown malicious actors (targeting PyPI users). Campaign Overview • Malicious…

Pittsburgh Regional Transit attributes recent service disruptions to ransomware attack

Category Details Threat Actors • Unknown ransomware group (investigation ongoing). Campaign Overview • Ransomware attack…

Iran's Charming Kitten Deploys BellaCPP: A New C++ Variant of BellaCiao Malware

Category Details Threat Actors • Charming Kitten (APT35, CALANQUE, Mint Sandstorm, TA453, Yellow Garuda, etc.),…

DarkVision RAT: A Persistent Threat Delivered via PureCrypter

Category Details Threat Actors • Unknown threat actors using DarkVision RAT with PureCrypter loader. Campaign…