Tag: cybercriminal
-
The Register: Are your Prometheus servers and exporters secure? Probably not
Source URL: https://www.theregister.com/2024/12/15/prometheus_servers_exporters_exposed/ Source: The Register Title: Are your Prometheus servers and exporters secure? Probably not Feedly Summary: Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more Infosec in brief There’s a problem of titanic proportions brewing for users of the Prometheus open source monitoring toolkit: hundreds of thousands of servers and exporters…
-
The Register: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks
Source URL: https://www.theregister.com/2024/12/13/iran_cyberweapon_us_attacks/ Source: The Register Title: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks Feedly Summary: IOCONTROL targets IoT and OT devices from a ton of makers, apparently An Iranian government-linked cybercriminal crew used custom malware called IOCONTROL to attack and remotely control US and Israel-based water and fuel management systems, according…
-
Microsoft Security Blog: Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine
Source URL: https://www.microsoft.com/en-us/security/blog/2024/12/11/frequent-freeloader-part-ii-russian-actor-secret-blizzard-using-tools-of-other-groups-to-attack-ukraine/ Source: Microsoft Security Blog Title: Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine Feedly Summary: Since January 2024, Microsoft has observed Secret Blizzard using the tools or infrastructure of other threat groups to attack targets in Ukraine and download its custom backdoors Tavdig and…
-
The Register: North Korea’s fake IT worker scam hauled in at least $88 million over six years
Source URL: https://www.theregister.com/2024/12/13/doj_dpkr_fake_tech_worker_indictment/ Source: The Register Title: North Korea’s fake IT worker scam hauled in at least $88 million over six years Feedly Summary: DoJ thinks it’s found the folks that ran it, and some of the ‘IT warriors’ sent out to fleece employers North Korea’s fake IT worker scams netted the hermit kingdom $88…
-
Cisco Talos Blog: Something to Read When You Are On Call and Everyone Else is at the Office Party
Source URL: https://blog.talosintelligence.com/something-to-read-when-you-are-on-call-and-everyone-else-is-at-the-office-party/ Source: Cisco Talos Blog Title: Something to Read When You Are On Call and Everyone Else is at the Office Party Feedly Summary: Its mid-December, if you’re on-call or working to defend networks, this newsletter is for you. Martin discusses the widening gap between threat and defences as well as the growing…
-
The Register: Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
Source URL: https://www.theregister.com/2024/12/12/operation_poweroff_ddos_takedowns/ Source: The Register Title: Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push Feedly Summary: Holiday cheer comes in the form of three arrests and 27 shuttered domains The Europol-coordinated Operation PowerOFF struck again this week as cross-border cops pulled the plug on 27 more domains tied to distributed…
-
Cisco Talos Blog: The evolution and abuse of proxy networks
Source URL: https://blog.talosintelligence.com/the-evolution-and-abuse-of-proxy-networks/ Source: Cisco Talos Blog Title: The evolution and abuse of proxy networks Feedly Summary: Proxy and anonymization networks have been dominating the headlines, this piece discusses its origins and evolution on the threat landscape with specific focus on state sponsored abuse. AI Summary and Description: Yes Summary: The text discusses the growing…
-
Krebs on Security: How Cryptocurrency Turns to Cash in Russian Banks
Source URL: https://krebsonsecurity.com/2024/12/how-cryptocurrency-turns-to-cash-in-russian-banks/ Source: Krebs on Security Title: How Cryptocurrency Turns to Cash in Russian Banks Feedly Summary: A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street…
-
News: Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/law-enforcement-shuts-down-27-ddos-booters-ahead-of-annual-christmas-attacks Source: News Title: Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks Feedly Summary: Known as ‘booter’ and ‘stresser’ websites, these platforms enabled cybercriminals and hacktivists to flood targets with illegal traffic, rendering websites and other web-based services inaccessible.This multifaceted operation, coordinated by Europol and involving 15 countries, targeted…