Cyberattacks Targeting Government Agencies on the Rise

By Waqas A concerning trend is emerging on the global stage: a rise in cyberattacks targeting government agencies. This is a post from HackRead.com Read the original post: Cyberattacks Targeting Government Agencies on the Rise...

"An influx of Elons," a hospital visit, and magic men: Becky Holmes shares more romance scams: Lock and Code S04E18

Becky Holmes is a big deal online. Hugh Jackman has invited her to dinner. Prince William has told her she has "such a beautiful name." Once, Ricky Gervais simply needed her photos "I want you to take a snap of yourself and then send it to me on here...Send it to me on here!" he messaged on...

China-Linked Flax Typhoon Cyber Espionage Targets Taiwan's Key Sectors

A nation-state activity group originating from China has been linked to cyber attacks on dozens of organizations in Taiwan as part of a suspected espionage campaign. The Microsoft Threat Intelligence team is tracking the activity under the name Flax Typhoon, which is also known as Ethereal Panda...

Attacks, Vulnerabilities and Actors 14 August to 20 August 2023

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of eight executed attacks, one instance of adversary activity, and four zero-day...

The Vulnerability of Zero Trust: Lessons from the Storm 0558 Hack

While IT security managers in companies and public administrations rely on the concept of Zero Trust, APTS Advanced Persistent Threats are putting its practical effectiveness to the test. Analysts, on the other hand, understand that Zero Trust can only be achieved with comprehensive insight into...

Monti Ransomware’s New Linux Variant Enhanced Encryption

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Monti ransomware, resembling Conti, resurfaces after a break, targeting legal and government sectors. A new Linux variant diverges significantly, using distinct tactics for encryption and virtual machine...

Monti Ransomware Returns with New Linux Variant and Enhanced Evasion Tactics

The threat actors behind the Monti ransomware have resurfaced after a two-month break with a new Linux version of the encryptor in its attacks targeting government and legal sectors. Monti emerged in June 2022, weeks after the Conti ransomware group shut down its operations, deliberately imitatin...

Malware Unleashed: Public Sector Hit in Sudden Surge, Reveals New Report

The just-released BlackBerry Global Threat Intelligence Report reveals a 40% increase in cyberattacks against government and public service organizations versus the previous quarter. This includes public transit, utilities, schools, and other government services we rely on daily. With limited...

Knocking the Surface of Rhysida Ransomware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Rhysida ransomware campaign is rapidly gaining notoriety, driven by a series of successful infiltrations into healthcare institutions. This surge in attacks requires government entities and the targe...

CVE-2023-35385

creationtimestamp| type| source ---|---|--- 2023-08-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1086...

CVE-2023-36910

creationtimestamp| type| source ---|---|--- 2023-08-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1086...

China-Linked Hackers Strike Worldwide: 17 Nations Hit in 3-Year Cyber Campaign

Hackers associated with China's Ministry of State Security MSS have been linked to attacks in 17 different countries in Asia, Europe, and North America from 2021 to 2023. Cybersecurity firm Recorded Future attributed the intrusion set to a nation-state group it tracks under the name RedHotel...

What is commercial spyware?

Weve talked quite a bit about spyware recently, with very good reason. Recently, concerns have grown regarding the rapid growth of commercial spyware tools, and the way in which they are being used against their intended victims. This Need to Know article talk about the broader effects of spyware...

CVE-2023-29328

creationtimestamp| type| source ---|---|--- 2023-08-08 22:20:39+00:00| seen| https://t.me/cibsecurity/68058 2023-08-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1086 2025-02-27 21:26:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5803...

CVE-2023-36911

creationtimestamp| type| source ---|---|--- 2023-08-08 22:20:37+00:00| seen| https://t.me/cibsecurity/68057 2023-08-09 10:07:43+00:00| seen| https://t.me/kasperskyb2b/792 2023-08-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1086...

Microsoft Signing Key Stolen by Chinese

A bunch of networks, including US Government networks, have been hacked by the Chinese. The hackers used forged authentication tokens to access user email, using a stolen Microsoft Azure account consumer signing key. Congress wants answers. The phrase "negligent security practices" is being tosse...

AI Flagged as “Chronic Risk” in UK Government’s Risk Register 2023 Report

By Habiba Rashid The UK government has also warned about the looming threat of severe cyber attacks on critical national infrastructure in its recently released National Risk Register 2023. This is a post from HackRead.com Read the original post: AI Flagged as "Chronic Risk" in UK Governments Ris...

"Mysterious Team Bangladesh" Targeting India with DDoS Attacks and Data Breaches

A hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service DDoS attacks and 78 website defacements since June 2022. "The group most frequently attacks logistics, government, and financial sector organizations in India and Israel,"...

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

Microsoft Threat Intelligence has identified highly targeted social engineering attacks using credential theft phishing lures sent as Microsoft Teams chats by the threat actor that Microsoft tracks as Midnight Blizzard previously tracked as NOBELIUM. This latest attack, combined with past activit...

CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities

The Cybersecurity and Infrastructure Security Agency CISA and the Norwegian National Cyber Security Centre NCSC-NO have released a joint Cybersecurity Advisory CSA, Threat Actors Exploiting Ivanti EPMM Vulnerabilities, in response to the active exploitation of CVE-2023-35078 and CVE-2023-35081...