Tag: tactics
-
Microsoft Security Blog: The BadPilot campaign: Seashell Blizzard subgroup conducts multiyear global access operation
Source URL: https://www.microsoft.com/en-us/security/blog/2025/02/12/the-badpilot-campaign-seashell-blizzard-subgroup-conducts-multiyear-global-access-operation/ Source: Microsoft Security Blog Title: The BadPilot campaign: Seashell Blizzard subgroup conducts multiyear global access operation Feedly Summary: Microsoft is publishing for the first time our research into a subgroup within the Russian state actor Seashell Blizzard and its multiyear initial access operation, tracked by Microsoft Threat Intelligence as the “BadPilot campaign”.…
-
Cloud Blog: Why you should check out our Next ‘25 Security Hub
Source URL: https://cloud.google.com/blog/products/identity-security/why-you-should-check-out-our-security-hub-at-next25/ Source: Cloud Blog Title: Why you should check out our Next ‘25 Security Hub Feedly Summary: Google Cloud Next 2025 is coming up fast, and it’s shaping up to be a must-attend event for the cybersecurity community and anyone passionate about learning more about the threat landscape. We’re going to offer an…
-
The Register: Russia’s Sandworm caught snarfing credentials, data from American and Brit orgs
Source URL: https://www.theregister.com/2025/02/12/russias_sandworm_caught_stealing_credentials/ Source: The Register Title: Russia’s Sandworm caught snarfing credentials, data from American and Brit orgs Feedly Summary: ‘Near-global’ initial access campaign active since 2021 An initial-access subgroup of Russia’s Sandworm last year wriggled its way into networks within the US, UK, Canada and Australia, stealing credentials and data from “a limited number…
-
The Register: Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining
Source URL: https://www.theregister.com/2025/02/11/triplestrength_google/ Source: The Register Title: Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining Feedly Summary: These crooks have no chill A previously unknown gang dubbed Triplestrength poses a triple threat to organizations: It infects victims’ computers with ransomware, then hijacks their cloud accounts to illegally mine for cryptocurrency.… AI Summary and…
-
The Register: Man who SIM-swapped the SEC’s X account pleads guilty
Source URL: https://www.theregister.com/2025/02/11/sim_swapped_guilty_plea/ Source: The Register Title: Man who SIM-swapped the SEC’s X account pleads guilty Feedly Summary: Said to have asked search engine ‘What are some signs that the FBI is after you?’ An Alabama man is pleading guilty after being charged with SIM swapping the Securities and Exchange Commission’s (SEC) X account in…
-
The Register: I’m a security expert, and I almost fell for a North Korea-style deepfake job applicant …Twice
Source URL: https://www.theregister.com/2025/02/11/it_worker_scam/ Source: The Register Title: I’m a security expert, and I almost fell for a North Korea-style deepfake job applicant …Twice Feedly Summary: Remote position, webcam not working, then glitchy AI face … Red alert! Twice, over the past two months, Dawid Moczadło has interviewed purported job seekers only to discover that these…
-
News: Key figures behind Phobos and 8Base ransomware arrested in international cybercrime crackdown
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/key-figures-behind-phobos-and-8base-ransomware-arrested-in-international-cybercrime-crackdown Source: News Title: Key figures behind Phobos and 8Base ransomware arrested in international cybercrime crackdown Feedly Summary: This follows a series of high-impact arrests targeting Phobos ransomware:An administrator of Phobos was arrested in South Korea in June 2024 and extradited to the United States in November of the same year. He is…
-
The Register: All your 8Base are belong to us: Ransomware crew busted in global sting
Source URL: https://www.theregister.com/2025/02/10/8base_police_arrrest/ Source: The Register Title: All your 8Base are belong to us: Ransomware crew busted in global sting Feedly Summary: Dark web site seized, four cuffed in Thailand An international police operation spanning the US, Europe, and Asia has shuttered the 8Base ransomware crew’s dark web presence and resulted in the arrest of…