Tag: threat actor
-
Hacker News: European govt air-gapped systems breached using custom malware
Source URL: https://www.welivesecurity.com/en/eset-research/mind-air-gap-goldenjackal-gooses-government-guardrails/ Source: Hacker News Title: European govt air-gapped systems breached using custom malware Feedly Summary: Comments AI Summary and Description: Yes Summary: This text presents an extensive analysis of the GoldenJackal APT group’s cyberespionage activities, notably their attacks on air-gapped systems within governmental organizations in Europe. It introduces previously undocumented malware tools employed…
-
Cisco Talos Blog: Threat actor believed to be spreading new MedusaLocker variant since 2022
Source URL: https://blog.talosintelligence.com/threat-actor-believed-to-be-spreading-new-medusalocker-variant-since-2022/ Source: Cisco Talos Blog Title: Threat actor believed to be spreading new MedusaLocker variant since 2022 Feedly Summary: Cisco Talos has discovered a financially motivated threat actor, active since 2022, recently observed delivering a MedusaLocker ransomware variant. Intelligence collected by Talos on tools regularly employed by the threat actor allows us to see…
-
Alerts: Citrix Releases Security Updates for Citrix Workspace App for Windows
Source URL: https://www.cisa.gov/news-events/alerts/2024/09/10/citrix-releases-security-updates-citrix-workspace-app-windows Source: Alerts Title: Citrix Releases Security Updates for Citrix Workspace App for Windows Feedly Summary: Citrix released security updates to address multiple vulnerabilities in the Citrix Workspace App for Windows. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators…
-
Krebs on Security: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’
Source URL: https://krebsonsecurity.com/2024/08/new-0-day-attacks-linked-to-chinas-volt-typhoon/ Source: Krebs on Security Title: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’ Feedly Summary: Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on…
-
Slashdot: Toyota Confirms Breach After Stolen Data Leaks On Hacking Forum
Source URL: https://yro.slashdot.org/story/24/08/20/2214213/toyota-confirms-breach-after-stolen-data-leaks-on-hacking-forum?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Toyota Confirms Breach After Stolen Data Leaks On Hacking Forum Feedly Summary: AI Summary and Description: Yes Summary: Toyota has confirmed a significant data breach involving 240GB of sensitive information related to employees and customers, leaked on a hacking forum by the threat actor ZeroSevenGroup. This incident raises critical…