tactics – Page 3 – Experimental News Clipping Site

Unit 42: Bookworm to Stately Taurus Using the Unit 42 Attribution Framework

Sep 24, 2025

—

by

Source URL: https://unit42.paloaltonetworks.com/bookworm-to-stately-taurus/ Source: Unit 42 Title: Bookworm to Stately Taurus Using the Unit 42 Attribution Framework Feedly Summary: We connect Bookworm malware to Chinese APT Stately Taurus using our attribution framework, enhancing our understanding of threat group tradecraft. The post Bookworm to Stately Taurus Using the Unit 42 Attribution Framework appeared first on Unit…

Cloud Blog: Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/brickstorm-espionage-campaign/ Source: Cloud Blog Title: Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors Feedly Summary: Written by: Sarah Yoder, John Wolfram, Ashley Pearson, Doug Bienstock, Josh Madeley, Josh Murchie, Brad Slaybaugh, Matt Lin, Geoff Carstairs, Austin Larsen Introduction Google Threat Intelligence Group (GTIG) is tracking BRICKSTORM malware activity, which is…

Microsoft Security Blog: AI vs. AI: Detecting an AI-obfuscated phishing campaign

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/09/24/ai-vs-ai-detecting-an-ai-obfuscated-phishing-campaign/ Source: Microsoft Security Blog Title: AI vs. AI: Detecting an AI-obfuscated phishing campaign Feedly Summary: Microsoft Threat Intelligence recently detected and blocked a credential phishing campaign that likely used AI-generated code to obfuscate its payload and evade traditional defenses, demonstrating a broader trend of attackers leveraging AI to increase the effectiveness of…

Krebs on Security: Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms

Sep 24, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/09/feds-tie-scattered-spider-duo-to-115m-in-ransoms/ Source: Krebs on Security Title: Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms Feedly Summary: U.S. prosecutors last week levied criminal hacking charges against 19-year-old U.K. national Thalha Jubair for allegedly being a core member of Scattered Spider, a prolific cybercrime group blamed for extorting at least $115 million in ransom…

The Register: Nearly half of businesses suffered deepfaked phone calls against staff

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/23/gartner_ai_attack/ Source: The Register Title: Nearly half of businesses suffered deepfaked phone calls against staff Feedly Summary: AI attacks on the rise A survey of cybersecurity bosses has shown that 62 percent reported attacks on their staff using AI over the last year, either by the use of prompt injection attacks or faking…

The Register: Kaspersky: RevengeHotels checks back in with AI-coded malware

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/23/kaspersky_revengehotels_checks_back_in/ Source: The Register Title: Kaspersky: RevengeHotels checks back in with AI-coded malware Feedly Summary: Old hotel scam gets an AI facelift, leaving travellers’ card details even more at risk Kaspersky has raised the alarm over the resurgence of hotel-hacking outfit “RevengeHotels," which it claims is now using artificial intelligence to supercharge its…

The Register: Suspected Iran-backed attackers targeting European aerospace sector with novel malware

Sep 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/23/iran_targeting_european_aerospace/ Source: The Register Title: Suspected Iran-backed attackers targeting European aerospace sector with novel malware Feedly Summary: Instead of job offers, victims get MiniJunk backdoor and MiniBrowse stealer Suspected Iranian government-backed online attackers have expanded their European cyber ops with fake job portals and new malware targeting organizations in the defense, manufacturing, telecommunications,…

The Register: OpenAI plugs ShadowLeak bug in ChatGPT that let miscreants raid inboxes

Sep 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/19/openai_shadowleak_bug/ Source: The Register Title: OpenAI plugs ShadowLeak bug in ChatGPT that let miscreants raid inboxes Feedly Summary: Radware says flaw enabled hidden email prompts to trick Deep Research agent into exfiltrating sensitive data ChatGPT’s research assistant sprung a leak – since patched – that let attackers steal Gmail secrets with just a…

The Register: ‘FileFix’ attacks use fake Facebook security alerts to trick victims into running infostealers

Sep 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/16/filefix_attacks_facebook_security_alert/ Source: The Register Title: ‘FileFix’ attacks use fake Facebook security alerts to trick victims into running infostealers Feedly Summary: Tech evolved from PoC to global campaign in under two months An attack called FileFix is masquerading as a Facebook security alert before ultimately dropping the widely used StealC infostealer and malware downloader.……

The Register: Nork snoops whip up fake South Korean military ID with help from ChatGPT

Sep 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/15/north_korea_chatgpt_fake_id/ Source: The Register Title: Nork snoops whip up fake South Korean military ID with help from ChatGPT Feedly Summary: Kimsuky gang proves that with the right wording, you can turn generative AI into a counterfeit factory North Korean spies used ChatGPT to generate a fake military ID for use in an espionage…

Tag: tactics