Tag: threat actor
-
Microsoft Security Blog: New Star Blizzard spear-phishing campaign targets WhatsApp accounts
Source URL: https://www.microsoft.com/en-us/security/blog/2025/01/16/new-star-blizzard-spear-phishing-campaign-targets-whatsapp-accounts/ Source: Microsoft Security Blog Title: New Star Blizzard spear-phishing campaign targets WhatsApp accounts Feedly Summary: In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group. This is the first…
-
CSA: 2025’s All-Star SaaS Threat Actors to Watch
Source URL: https://thehackernews.com/2025/01/from-22m-in-ransom-to-100m-stolen.html Source: CSA Title: 2025’s All-Star SaaS Threat Actors to Watch Feedly Summary: AI Summary and Description: Yes Summary: The text outlines the alarming rise of cyber threats targeting SaaS applications in 2024, highlighting a significant increase in password attacks and phishing attempts. Key insights include the evolving tactics of cybercriminals exploiting SaaS…
-
Unit 42: Threat Brief: CVE-2025-0282 and CVE-2025-0283
Source URL: https://unit42.paloaltonetworks.com/threat-brief-ivanti-cve-2025-0282-cve-2025-0283/ Source: Unit 42 Title: Threat Brief: CVE-2025-0282 and CVE-2025-0283 Feedly Summary: CVE-2025-0282 and CVE-2025-0283 affect multiple Ivanti products. This threat brief covers attack scope, including details from an incident response case. The post Threat Brief: CVE-2025-0282 and CVE-2025-0283 appeared first on Unit 42. AI Summary and Description: Yes **Summary:** The text details…
-
The Register: Russia’s Star Blizzard phishing crew caught targeting WhatsApp accounts
Source URL: https://www.theregister.com/2025/01/16/russia_star_blizzard_whatsapp/ Source: The Register Title: Russia’s Star Blizzard phishing crew caught targeting WhatsApp accounts Feedly Summary: FSB cyberspies venture into a new app for espionage, Microsoft says Star Blizzard, a prolific phishing crew backed by the Russian Federal Security Service (FSB), conducted a new campaign aiming to compromise WhatsApp accounts and gain access…
-
The Register: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says
Source URL: https://www.theregister.com/2025/01/15/salt_typhoon_us_govt_networks/ Source: The Register Title: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says Feedly Summary: We are only seeing ‘the tip of the iceberg,’ Easterly warns Beijing’s Salt Typhoon cyberspies had been seen in US government networks before telcos discovered the same foreign intruders in their own…
-
Alerts: Microsoft Releases January 2025 Security Updates
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/14/microsoft-releases-january-2025-security-updates Source: Alerts Title: Microsoft Releases January 2025 Security Updates Feedly Summary: Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary updates:…
-
Alerts: Adobe Releases Security Updates for Multiple Products
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/14/adobe-releases-security-updates-multiple-products Source: Alerts Title: Adobe Releases Security Updates for Multiple Products Feedly Summary: Adobe released security updates to address vulnerabilities in multiple Adobe software products including Adobe Photoshop, Animate, and Illustrator for iPad. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users…