Threat Intelligence
-
AWS Elastic IP Transfer Feature Gives Cyberattackers Free Range
Attackers can compromise a new feature in Amazon Web Services (AWS) to hijack cloud accounts’ static public IP addresses and abuse…
-
‘Blindside’ Attack Subverts EDR Platforms From Windows Kernel
A newly pioneered technique could render endpoint detection and response (EDR) platforms “blind” by unhooking the user-facing mode of the…
-
Searchlight Security Changes Name to Searchlight Cyber and Launches New Brand
Portsmouth, UK & Washington DC, US – December 20 2022 — Searchlight Cyber, the dark web intelligence company, has announced its rebrand…
-
Sophisticated DarkTortilla Malware Serves Imposter Cisco, Grammarly Pages
Researchers have spotted two phishing sites — one spoofing a Cisco webpage and the other masquerading as a Grammarly site…
-
Malicious Python Trojan Impersonates SentinelOne Security Client
In the latest supply chain attack, an unknown threat actor has created a malicious Python package that appears to be…
-
FBI: Criminals Using BEC Attacks to Scavenge Food Shipments
Threat actors have typically used business email compromise (BEC) attacks to steal money from unwary organizations in recent years. But…
-
-
Chinese APT Group MirrorFace Interferes in Japanese Elections
The Chinese APT group MirrorFace attempted to influence the elections for the Japanese House of Representatives this year, an investigation…
-
Iran-Backed Charming Kitten APT Eyes Kinetic Ops, Kidnapping
State-sponsored advanced persistent threat (APT) Charming Kitten (aka TA453), which is purportedly linked to the Islamic Revolutionary Guard Corps (IRGC), has updated its…
-
Meta Ponies Up $300K Bounty for Zero-Click Mobile RCE Bugs in Facebook
Facebook parent Meta will pay up to $300,000 to security researchers who report exploitable remote code execution (RCE) vulnerabilities in…