New Phishing Campaign Uses DBatLoader to Drop Remcos RAT: What Analysts Need to Know

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings...

Leaked Black Basta Chats Suggest Russian Officials Aided Leader's Escape from Armenia

The recently leaked trove of internal chat logs among members of the Black Basta ransomware operation has revealed possible connections between the e-crime gang and Russian authorities. The leak, containing over 200,000 messages from September 2023 to September 2024, was published by a Telegram...

LightSpy Expands to 100+ Commands, Increasing Control Over Windows, macOS, Linux, and Mobile

Cybersecurity researchers have flagged an updated version of the LightSpy implant that comes equipped with an expanded set of data collection features to extract information from social media platforms like Facebook and Instagram. LightSpy is the name given to a modular spyware that's capable of...

GHSA-4XQ7-4MGH-GP6W

creationtimestamp| type| source ---|---|--- 2025-02-03 18:35:49+00:00| seen| https://threatintel.cc/2025/02/03/amd-microcode-signature-verification-vulnerability.html 2025-02-03 18:48:57+00:00| seen| https://bsky.app/profile/hnws.bsky.social/post/3lhc7g5lp432e 2025-02-03 19:00:50+00:00| seen|...

CISA Releases Analysis of FY23 Risk and Vulnerability Assessments

CISA has released an analysis and infographic detailing the findings from the 143 Risk and Vulnerability Assessments RVAs conducted across multiple critical infrastructure sectors in fiscal year 2023 FY23. The analysis details a sample attack path including tactics and steps a cyber threat actor...

Understanding the Phobos affiliate structure and activity

Cisco Talos recently identified the most prolific Phobos variants, common affiliate tactics, techniques and procedures TTPs, and characteristics of the Phobos affiliate structure, based on observed Phobos activity and analysis of over 1,000 Phobos samples from VirusTotal dating back to 2019. We...

Deep Analysis of Hospitality Phishing Campaign Shows Global Threat

...

CB Customer Spotlight: Q&A with ALLETE’s Jeff Rotenberger

For five years now, Jeff Rotenberger has served as a cybersecurity analyst for ALLETE, an energy and utilities company providing for the Upper Midwest. Rotenberger and his team have been working with Carbon Black CB APIs and CB Response to greatly reduce time spent on security remediation. Read o...

Wordpress Theme Myriad Arbitrary File Download Vulnerability

This exploit allows attacker to download any writable file from the server Usage Info The exploit extension is .html Put the path of the file in the file's field of the exploit ,then click "Download" button then you get the file directly Title : Wordpress Theme Myriad Arbitrary File Download...

Threat Outbreak Alert: Fake Payment Information Email Messages on March 21, 2014

Medium Alert ID: 33456 First Published: 2014 March 21 14:05 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payment information for the recipient. The text in the email message attempts to convince the recipient to open...