Experimental News Clipping Site

Tag: tactics

  • The Register: Experts race to extract intel from Black Basta internal chat leaks

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/02/21/experts_race_to_extract_intel/ Source: The Register Title: Experts race to extract intel from Black Basta internal chat leaks Feedly Summary: Researchers say there’s dissent in the ranks. Plus: An AI tool lets you have a go yourself at analysing the data Hundreds of thousands of internal messages from the Black Basta ransomware gang were leaked…

  • Slashdot: Ghost Ransomware Continues To Infect Critical Infrastructure, Feds Warn

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/02/21/0032236/ghost-ransomware-continues-to-infect-critical-infrastructure-feds-warn?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Ghost Ransomware Continues To Infect Critical Infrastructure, Feds Warn Feedly Summary: AI Summary and Description: Yes Summary: The text discusses ongoing threats posed by the Ghost ransomware group, underlining the importance of addressing vulnerabilities to mitigate risks. The advisory issued by the FBI and US Cybersecurity and Infrastructure Security…

  • Cisco Talos Blog: Weathering the storm: In the midst of a Typhoon

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/salt-typhoon-analysis/ Source: Cisco Talos Blog Title: Weathering the storm: In the midst of a Typhoon Feedly Summary: Cisco Talos has been closely monitoring reports of widespread intrusion activity against several major U.S. telecommunications companies, by a threat actor dubbed Salt Typhoon. This blog highlights our observations on this campaign and identifies recommendations for…

  • Unit 42: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware

    by

    Kurt Seifried
    in

    Source URL: https://unit42.paloaltonetworks.com/?p=138311 Source: Unit 42 Title: Stately Taurus Activity in Southeast Asia Links to Bookworm Malware Feedly Summary: Unit 42 details the just-discovered connection between threat group Stately Taurus (aka Mustang Panda) and the malware Bookworm, found during analysis of the group’s infrastructure. The post Stately Taurus Activity in Southeast Asia Links to Bookworm…

  • The Register: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/02/20/fbi_beware_of_ghost_ransomware/ Source: The Register Title: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec Feedly Summary: FBI and CISA issue reminder – deep sigh – about the importance of patching and backups The operators of Ghost ransomware continue to claim victims and score payments, but keeping the crooks at bay…

  • The Register: Medusa ransomware gang demands $2M from UK private health services provider

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/02/20/medusa_hcrg_ransomware/ Source: The Register Title: Medusa ransomware gang demands $2M from UK private health services provider Feedly Summary: 2.3 TB held to ransom as biz formerly known as Virgin Care tells us it’s probing IT ‘security incident’ Exclusive HCRG Care Group, a private health and social services provider, has seemingly fallen victim to…

  • Alerts: CISA and Partners Release Advisory on Ghost (Cring) Ransomware

    by

    Kurt Seifried
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2025/02/19/cisa-and-partners-release-advisory-ghost-cring-ransomware Source: Alerts Title: CISA and Partners Release Advisory on Ghost (Cring) Ransomware Feedly Summary: Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and Multi-State Information Sharing and Analysis Center (MS-ISAC)—released a joint Cybersecurity Advisory, #StopRansomware: Ghost (Cring) Ransomware. This advisory provides network defenders with indicators of compromise (IOCs), tactics, techniques,…