Tag: threat actors
-
Alerts: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/22/cisa-and-fbi-release-advisory-how-threat-actors-chained-vulnerabilities-ivanti-cloud-service Source: Alerts Title: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications Feedly Summary: CISA, in partnership with the Federal Bureau of Investigation (FBI), released Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications. This advisory was crafted in response to active exploitation of vulnerabilities—CVE-2024-8963,…
-
CSA: 2025’s All-Star SaaS Threat Actors to Watch
Source URL: https://thehackernews.com/2025/01/from-22m-in-ransom-to-100m-stolen.html Source: CSA Title: 2025’s All-Star SaaS Threat Actors to Watch Feedly Summary: AI Summary and Description: Yes Summary: The text outlines the alarming rise of cyber threats targeting SaaS applications in 2024, highlighting a significant increase in password attacks and phishing attempts. Key insights include the evolving tactics of cybercriminals exploiting SaaS…
-
Unit 42: Threat Brief: CVE-2025-0282 and CVE-2025-0283
Source URL: https://unit42.paloaltonetworks.com/threat-brief-ivanti-cve-2025-0282-cve-2025-0283/ Source: Unit 42 Title: Threat Brief: CVE-2025-0282 and CVE-2025-0283 Feedly Summary: CVE-2025-0282 and CVE-2025-0283 affect multiple Ivanti products. This threat brief covers attack scope, including details from an incident response case. The post Threat Brief: CVE-2025-0282 and CVE-2025-0283 appeared first on Unit 42. AI Summary and Description: Yes **Summary:** The text details…
-
The Register: Russia’s Star Blizzard phishing crew caught targeting WhatsApp accounts
Source URL: https://www.theregister.com/2025/01/16/russia_star_blizzard_whatsapp/ Source: The Register Title: Russia’s Star Blizzard phishing crew caught targeting WhatsApp accounts Feedly Summary: FSB cyberspies venture into a new app for espionage, Microsoft says Star Blizzard, a prolific phishing crew backed by the Russian Federal Security Service (FSB), conducted a new campaign aiming to compromise WhatsApp accounts and gain access…
-
The Register: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says
Source URL: https://www.theregister.com/2025/01/15/salt_typhoon_us_govt_networks/ Source: The Register Title: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says Feedly Summary: We are only seeing ‘the tip of the iceberg,’ Easterly warns Beijing’s Salt Typhoon cyberspies had been seen in US government networks before telcos discovered the same foreign intruders in their own…
-
Alerts: Microsoft Releases January 2025 Security Updates
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/14/microsoft-releases-january-2025-security-updates Source: Alerts Title: Microsoft Releases January 2025 Security Updates Feedly Summary: Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary updates:…
-
Alerts: Adobe Releases Security Updates for Multiple Products
Source URL: https://www.cisa.gov/news-events/alerts/2025/01/14/adobe-releases-security-updates-multiple-products Source: Alerts Title: Adobe Releases Security Updates for Multiple Products Feedly Summary: Adobe released security updates to address vulnerabilities in multiple Adobe software products including Adobe Photoshop, Animate, and Illustrator for iPad. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users…
-
Unit 42: One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery With Graph Neural Networks
Source URL: https://unit42.paloaltonetworks.com/graph-neural-networks/ Source: Unit 42 Title: One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery With Graph Neural Networks Feedly Summary: Graph neural networks aid in analyzing domains linked to known attack indicators, effectively uncovering new malicious domains and cybercrime campaigns. The post One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery…