Rene RobichaudJan 13, 2025

Cyberattackers Hide Infostealers in YouTube Comments, Google Search Results
https://www.darkreading.com/threat-intelligence/cyberattackers-infostealers-youtube-comments-google-search

#Infosec #Security #Cybersecurity #CeptBiro #Cyberattackers #Infostealers #YouTubeComments #GoogleSearchResults

Cyberattackers Hide Infostealers in YouTube Comments

Threat actors are targeting people searching for pirated or cracked software with fake downloaders that include infostealing malware such as Lumma and Vidar.

Manuel BisseyJul 2, 2024

As a security professional, it can be tempting to believe that with sufficient resources we can achieve of state of parity over #cyberattackers. After all, if we got to an ideal state: staffed teams, defensive tools, and proven defensive operation… 🤖

https://www.helpnetsecurity.com/2024/07/02/getting-ahead-resilience/

The impossibility of “getting ahead” in cyber defense - Help Net Security

"Getting ahead" of cyber attackers at scale is impossible. Instead, focus on dissuasion and resilience against inevitable attacks.

Help Net Security
Manuel BisseyJan 20, 2024

Just like you and me, #cyberattackers returned from winter break and immediately started sending thousands of emails and #scams☝️👩‍💻

https://www.darkreading.com/threat-intelligence/threat-actors-post-holiday-phishing-email-surge?utm_content=bufferb3543&utm_medium=social&utm_source=bufferapp.com&utm_campaign=buffer

Threat Actors Team Up for Post-Holiday Phishing Email Surge

Just like you and me, cyberattackers returned from winter break and immediately started sending thousands of emails.

Eugene McParland 🇺🇦Dec 5, 2023

#Microsoft said Monday it uncovered evidence that russia‘s government is responsible for hacks of its customers’ email accounts and it worked with the #Polish government to repel the #cyberattackers.

“Microsoft has identified a nation-state activity group tracked as Forest Blizzard (STRONTIUM), based in russia, actively exploiting CVE-2023-23397 to provide secret, unauthorized access to #email accounts within Exchange servers,” Microsoft said

Read more here🔗 https://www.washingtontimes.com/news/2023/dec/4/microsoft-says-russia-responsible-for-hack-of-emai/

#Ukraine 🇺🇦

Microsoft says Russia responsible for hack of email accounts

Microsoft said Monday it uncovered evidence that Russia's government is responsible for hacks of its customers' email accounts and it worked with the Polish government to repel the cyberattackers.

The Washington Times
cryptrz Sep 9, 2023

#Cyberattackers Swarm #OpenFire #Cloud #Servers With Takeover Barrage

The #Kinsing threat group has launched more than 1,000 #cyberattacks in less than two months, exploiting the #security #vulnerability CVE-2023-32315 in the internal corporate messaging app in order to upload the #malware and a #cryptominer.

https://www.darkreading.com/remote-workforce/cyberattackers-openfire-cloud-servers-takeover-barrage

CVE-2023-32315:
* https://attackerkb.com/topics/7Tf5YGY3oT/cve-2023-32315?referrer=activityFeed

* https://nvd.nist.gov/vuln/detail/CVE-2023-32315

Cyberattackers Swarm OpenFire Cloud Servers With Takeover Barrage

The Kinsing threat group has launched more than 1,000 cyberattacks in less than two months, exploiting a security vulnerability in the internal corporate messaging app in order to upload the malware and a cryptominer.

Dark Reading
Benjamin Carr, Ph.D. 👨🏻‍💻🧬Aug 26, 2023
How #FBI goes after #DDoS #cyberattackers
In an interview at #BlackHat, FBI explains how they target and take down DDoS-for-hire sites. FBI Agent Peterson, who has focused on DDoS attacks for a decade, sat down with TechCrunch to talk about going after people behind those DDoS services, and identifying which services to take down. He explained what goals #lawenforcement has with these investigations, how DDoS attacks have changed, who are the people behind them,
https://techcrunch.com/2023/08/12/fbi-ddos-for-hire-cyberattackers/
TechCrunch is part of the Yahoo family of brands

InfoSecSherpaMar 20, 2023

InfoSecSherpa's #DataPrivacy and #InfoSec News Roundup for Monday, March 20, 2023🏀

Features the Dark Reading article, "#Cyberattackers Hoop NBA Fan Data via Third-Party Vendor."

https://infosecsherpa.medium.com/infosecsherpas-news-roundup-for-monday-march-20-2023-2ab37f6f9311

InfoSecSherpa’s News Roundup for Monday, March 20, 2023

InfoSecSherpa: Your Guide Up a Mountain of Information!. “InfoSecSherpa’s News Roundup for Monday, March 20, 2023” is published by InfoSecSherpa.

Medium
TechHelpKB.com 📚Oct 31, 2022
Highly skilled #cyberattackers are using a never-before-seen technique to stealthily infect victims with #malware by abusing legitimate tools. https://tchlp.com/3WbPjvH
This stealthy hacking campaign uses a new trick to deliver its malware

Cyber attackers are using a new technique to hide their malicious activities and compromise victims with trojan malware backdoors.

ZDNET
CK's Technology NewsJun 15, 2022

In April, a team of #cyberattackers attempted to breach an #undersea #cable

https://twitter.com/WillManidis/status/1537071965608943616

RT @[email protected]

In April, a team of cyberattackers attempted to breach an undersea cable off the coast of Hawaii.

The cable is part of a network that carries over 95% of the world’s data.

The attack is one of in a series of mysterious attacks on US infrastructure. Let's dig in.

🐦🔗: https://twitter.com/WillManidis/status/1537071965608943616

Will Manidis on Twitter

“In April, a team of cyberattackers attempted to breach an undersea cable off the coast of Hawaii. The cable is part of a network that carries over 95% of the world’s data. The attack is one of in a series of mysterious attacks on US infrastructure. Let's dig in.”

Twitter
redfrogJun 26, 2021
Years of data were wiped clean on @WesternDigital
#NAS devices around the world on Wednesday as #cyberattackers exploited an #RCE #bug. #cybersecurity
https://threatpost.com/my-book-live-wiped-rce-attacks/167270/
My Book Live Users Wake Up to Wiped Devices, Active RCE Attacks

“I am totally screwed,” one user wailed after finding years of data nuked. Western Digital advised yanking the NAS storage devices offline ASAP: There's an exploit.

Threatpost - English - Global - threatpost.com