Tag: tactics

Stay Ahead: Key Tactics in Identity Protection

Dec 20, 2024 10:42 AM

Tags: cyber, cybersecurity, identity, tactics, threat

Why is Identity Protection a Crucial Component of Cybersecurity? As cyber threats grow increasingly complex and sophisticated, organizations face an urgent need to bolster their security architecture. One critical aspect that often gets overlooked is Non-Human Identity (NHI) management. But, why is it so important? NHI refers to machine identities used for cybersecurity purposes. These……
NotLockBit Previously Unknown Ransomware Attack Windows macOS

Dec 20, 2024 7:43 AM

Tags: attack, cyber, cybersecurity, lockbit, macOS, ransomware, tactics, threat, windows

A new and advanced ransomware family, dubbed NotLockBit, has emerged as a significant threat in the cybersecurity landscape, closely mimicking the behavior and tactics of the notorious LockBit ransomware. NotLockBit notably distinguishes itself by being one of the first ransomware strains designed to effectively attack both macOS and Windows operating systems, showcasing powerful cross-platform capabilities.…
Malicious Supply Chain Attacking Moving From npm Community To VSCode Marketplace

Dec 19, 2024 1:42 PM

Tags: attack, cyber, exploit, malicious, marketplace, supply-chain, tactics, vulnerability

Researchers have identified a rise in malicious activity on the VSCode Marketplace, highlighting the vulnerability of the platform to supply chain attacks similar to those previously seen in the npm community. Malicious actors are increasingly exploiting npm packages to distribute malicious code, mirroring tactics previously used in VSCode extensions that involve the npm package etherscancontracthandler,…
Iranian Hackers Launched A Massive Attack to Exploit Global ICS Infrastructure

Dec 19, 2024 10:42 AM

Tags: advisory, attack, cisa, cyber, cybersecurity, exploit, hacker, infrastructure, iran, malicious, tactics, threat

In a joint cybersecurity advisory, the FBI, CISA, NSA, and partner agencies from Canada, the United Kingdom, and Israel have issued an urgent warning about ongoing malicious cyber activities by advanced persistent threat (APT) actors affiliated with Iran’s Islamic Revolutionary Guard Corps (IRGC). The advisory provides critical new details on tactics, techniques, and procedures (TTPs)…
Ransomware in 2024: New players, bigger payouts, and smarter tactics

Dec 19, 2024 5:42 AM

Tags: cybersecurity, group, law, ransomware, tactics, threat

In 2024, ransomware remained the top cybersecurity threat to organizations worldwide. New groups filled the void left by law enforcement crackdowns, targeting businesses with … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/19/ransomware-surveys-2024/
Biggest Crypto Scam Tactics in 2024 and How to Avoid Them

Dec 19, 2024 12:42 AM

Tags: crypto, guide, malware, phishing, scam, tactics, threat

Stay alert to crypto scams with our guide to 2024’s top threats, including phishing, malware, Ponzi schemes, and… First seen on hackread.com Jump to article: hackread.com/biggest-crypto-scam-tactics-in-2024-avoid-them/
A new ransomware regime is now targeting critical systems with weaker networks

Dec 18, 2024 1:42 PM

Tags: access, attack, authentication, breach, control, corporate, credentials, cybercrime, data, defense, exploit, extortion, finance, flaw, fortinet, group, infrastructure, law, lockbit, malware, mfa, network, ransomware, risk, tactics, usa, vmware, vpn, vulnerability, zyxel

The year 2024’s ransomware shake-up, fueled by law enforcement crackdowns on giants like LockBit, has shifted focus to critical operations, with major attacks this year hitting targets like Halliburton, TfL, and Arkansas water plant.A Dragos study for the third quarter of 2024 highlighted a surge in activity from new groups like RansomHub, Play, and Fog,…
Sophisticated TA397 Malware Targets Turkish Defense Sector

Dec 17, 2024 6:42 PM

Tags: attack, defense, malware, phishing, tactics

Sophisticated phishing attack targeting Turkey’s defense sector revealed TA397’s advanced tactics First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ta397-malware-targets-turkish/
Next-gen cybercrime: The need for collaboration in 2025

Dec 17, 2024 5:42 PM

Tags: ai, attack, awareness, cloud, crime, crimes, cyber, cyberattack, cybercrime, cybersecurity, defense, exploit, framework, group, healthcare, infrastructure, intelligence, risk, service, strategy, tactics, technology, threat, training, vulnerability

Cybercrime is a relentless and evolving threat to organizations worldwide. However, with the right insights, we can significantly enhance our security, mitigate risks, and stay ahead of these criminals.FortiGuard Labs’ Cyberthreat Predictions for 2025 report is designed to provide exactly these insights. It identifies emerging threat trends for the coming year and offers actionable guidance…
Fifth Generation Warfare (5GW) Readiness with TrustFour

Dec 16, 2024 6:42 PM

Tags: cyber, tactics, warfare

Fifth Generation Warfare (5GW) emphasizes non-traditional tactics such as cyber warfare, information manipulation, and asymmetric strategies. In this context, TrustFour’s expertise in securing workload interactions, managing Transport Layer Security (TLS) configurations, protecting Non-Human Identities (NHIs), and leveraging advanced telemetry plays a pivotal role in supporting 5GW operations. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/fifth-generation-warfare-5gw-readiness-with-trustfour/
Hackers Weaponizing Microsoft Teams to Gain Remote Access

Dec 16, 2024 12:42 PM

Tags: access, attack, cyber, cybersecurity, exploit, hacker, malicious, microsoft, social-engineering, tactics

Recent cybersecurity research has uncovered a concerning trend where hackers are exploiting Microsoft Teams to gain remote access to victim systems. Utilizing sophisticated social engineering tactics, these malicious actors pose as legitimate employees or trusted contacts, leveraging video calls on Microsoft Teams to deceive users into downloading harmful software. The attack typically begins with an…
Drowning in Visibility? Why Cybersecurity Needs to Shift from Visibility to Actionable Insight

Dec 13, 2024 2:05 PM

Tags: attack, cybersecurity, infrastructure, tactics

By focusing on prioritized, actionable insights, security teams can keep pace with the rapid expansion of the attack surface, manage frequent changes across their digital infrastructure and proactively address evolving attack tactics, techniques and procedures (TTPs). First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/drowning-in-visibility-why-cybersecurity-needs-to-shift-from-visibility-to-actionable-insight/
Antidot Malware Attacking Employees Android Devices To Inject Malicious Payloads

Dec 12, 2024 3:05 PM

Tags: android, banking, cyber, jobs, malicious, malware, mobile, phishing, social-engineering, tactics

Researchers discovered a new variant of the AntiDot banking trojan targeting Android mobile devices through a mobile-phishing (mishing) campaign, where this variant builds upon the version identified by Cyble in May 2024. The attackers leverage social engineering tactics, posing as recruiters offering job opportunities to lure victims. Once a user clicks on a malicious link…
The imperative for governments to leverage genAI in cyber defense

Dec 11, 2024 10:05 PM

Tags: ai, attack, cyber, cyberattack, cybersecurity, dark-web, data, deep-fake, defense, detection, email, endpoint, gartner, government, incident response, infrastructure, intelligence, LLM, malicious, malware, microsoft, strategy, tactics, threat, tool, training, vulnerability

In an era where cyber threats are evolving at an unprecedented pace, the need for robust cyber defense mechanisms has never been more critical. Sixty-two percent of all cyberattacks focus on public sector organizations directly and indirectly. Nation-state actors, equipped with generative artificial intelligence (genAI) sophisticated tools and techniques, pose significant threats to national security,…
Black Basta Ransomware Uses MS Teams, Email Bombing to Spread Malware

Dec 10, 2024 8:08 PM

Tags: email, group, infection, malware, ransomware, social-engineering, tactics

The Black Basta ransomware group is using advanced social engineering tactics and a multi-stage infection process to target organizations. First seen on hackread.com Jump to article: hackread.com/black-basta-gang-ms-teams-email-bombing-malware/
Inside the incident: Uncovering an advanced phishing attack

Dec 10, 2024 5:07 PM

Tags: access, attack, detection, email, malicious, phishing, tactics, threat

Recently, Varonis investigated a phishing campaign in which a malicious email enabled a threat actor to access the organization. This blog post will reveal the tactics used to avoid detection and share what was discovered during the investigation. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/inside-the-incident-uncovering-an-advanced-phishing-attack/
Five Ways Spear Phishing Tactics are Evolving in 2025

Dec 10, 2024 4:07 PM

Tags: defense, phishing, spear-phishing, tactics

What type of phishing became very effective around 2010 and still worries security teams today? Spear phishing. Spear phishing remains highly effective and is getting more dangerous by the day. What is spear phishing? What new technologies and methods will attackers use to get around common defenses? How will they become more precise and convincing?……
Webinar Today: Inside a Hacker’s Playbook How Cybercriminals Use Deepfakes

Dec 10, 2024 3:08 PM

Tags: business, cybercrime, deep-fake, email, exploit, hacker, social-engineering, tactics, technology

Join the live, eye-opening session that pulls back the curtain on how bad actors exploit social engineering tactics, like deepfake technology and Business Email Compromise (BEC). The post Webinar Today: Inside a Hacker’s Playbook How Cybercriminals Use Deepfakes appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/webinar-today-inside-a-hackers-playbook-how-cybercriminals-use-deepfakes/
APT53 Weaponizing LNK Files To Deploy Malware Into Target Systems

Dec 10, 2024 8:10 AM

Tags: apt, attack, cyber, cyberattack, defense, email, government, malicious, malware, phishing, tactics, threat

Gamaredon, a persistent threat actor since 2013, targets the government, defense, diplomacy, and media sectors of their victims, primarily through cyberattacks, to gain sensitive information and disrupt operations. It continues to employ sophisticated tactics, leveraging malicious LNK and XHTML files alongside intricate phishing schemes to carry out cyberattacks. Phishing emails with four distinct attack payloads…
Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering

Dec 9, 2024 8:07 PM

Tags: email, qr, ransomware, social-engineering, tactics, threat

The threat actors linked to the Black Basta ransomware have been observed switching up their social engineering tactics, distributing a different set of payloads such as Zbot and DarkGate since early October 2024.”Users within the target environment will be email bombed by the threat actor, which is often achieved by signing up the user’s email…
Exclusive: Feds are probing 764, The Com’s use of cybercriminal tactics to carry out violent crimes

Dec 5, 2024 4:48 PM

Tags: crime, crimes, cybercrime, group, intelligence, law, social-engineering, tactics, tool

The child sextortion group 764 and the global collective of loosely associated groups known as “The Com” are using tools and techniques normally used for financially motivated cybercrime tactics, such as SIM swapping, IP grabbing and social engineering, to commit violent crimes, according to exclusive law enforcement and intelligence reports reviewed by CyberScoop. […] First…
No Timeline for Evicting Chinese Hackers from US Networks

Dec 3, 2024 9:48 PM

Tags: china, government, hacker, network, tactics, threat

Beijing Threat Actor Shifts Tactics in Response to Public Disclosure. Chinese hackers who penetrated U.S. telecoms likely haven’t been fully evicted partially due to shifting tactics made in response to public disclosures, federal officials said Tuesday. Industry and government investigators have revealed in dribs and drabs a campaign of Beijing telecom hacking. First seen on…
Kimsuky Group Adopts New Phishing Tactics to Target Victims

Dec 3, 2024 5:48 PM

Tags: credentials, group, north-korea, phishing, russia, tactics

North Korean Kimsuky group has escalated their phishing campaigns, using Russian domains to steal credentials First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/kimsuky-adopts-new-phishing-tactics/
Apple Faces Privacy Lawsuit: Employee Alleges Invasive Device Monitoring

Dec 3, 2024 2:48 PM

Tags: apple, monitoring, privacy, tactics

A current Apple employee has filed a lawsuit against the tech giant, accusing the company of using invasive surveillance tactics on its workers’ personal devices. The Apple lawsuit, filed on Sunday evening in California state court, puts allegations that Apple monitors employees’ private iCloud accounts and non-work-related devices without their consent. First seen on thecyberexpress.com…
ElizaRAT Exploits Google, Telegram, Slack Services For C2 Communications

Dec 3, 2024 9:50 AM

Tags: android, attack, communications, cyber, espionage, exploit, google, government, group, india, linux, military, rat, service, tactics, windows

APT36, a Pakistani cyber-espionage group, has recently upgraded its arsenal with ElizaRAT, a sophisticated Windows RAT that, initially detected in 2023, employs advanced evasion tactics and robust C2 capabilities to target Indian government agencies, diplomatic personnel, and military installations. The group leverages multiple platforms, including Windows, Linux, and Android, to broaden its attack surface as…
Signs Point to Foreign Syndicate Fueling BEC Surge From Within U.S. ISPs

Dec 2, 2024 5:48 PM

Tags: detection, tactics, threat, tool

By staying informed of these evolving tactics and adopting advanced detection tools, organizations can better protect themselves against the increasingly stealthy and persistent BEC threats affecting businesses worldwide. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/signs-point-to-foreign-syndicate-fueling-bec-surge-from-within-u-s-isps/
AWS launches tools to tackle evolving cloud security threats

Dec 2, 2024 2:28 PM

Tags: access, ai, api, attack, cio, ciso, cloud, credentials, cyber, data, detection, exploit, finance, framework, healthcare, incident response, metric, mitre, ml, ransomware, security-incident, service, tactics, theft, threat, tool, update

The increasing sophistication and scale of cyber threats pose a growing challenge for enterprises managing complex cloud environments. Security teams often face overwhelming volumes of alerts, fragmented workflows, and limited tools to identify and respond to attack patterns spanning multiple events.Amazon Web Services (AWS) is addressing these challenges with two significant updates to its cloud…
8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play

Dec 2, 2024 12:28 PM

Tags: android, google, malicious, malware, mobile, social-engineering, tactics

Over a dozen malicious Android apps identified on the Google Play Store that have been collectively downloaded over 8 million times contain malware known as SpyLoan, according to new findings from McAfee Labs.”These PUP (potentially unwanted programs) applications use social engineering tactics to trick users into providing sensitive information and granting extra mobile app permissions,…
Crimson Palace geht mit neuen Tools, Taktiken und Zielen in die Offensive

Dec 1, 2024 9:28 PM

Tags: sophos, tactics, tool

Sophos hat seinen neuen Report ‘Crimson Palace: New Tools, Tactics, Targets veröffentlicht. Der Report beschreibt die jüngsten Entwicklungen in einer … First seen on news.sophos.com Jump to article: news.sophos.com/de-de/2024/09/17/crimson-palace-geht-mit-neuen-tools-taktiken-und-zielen-in-die-offensive/
Sophos X-Ops veröffentlicht Cyber-Spionage-Report

Dec 1, 2024 4:26 PM

Tags: cyber, sophos, tactics, tool

Sophos hat seinen neuen Report ‘Crimson Palace: New Tools, Tactics, Targets veröffentlicht. Report beschreibt die jüngsten Entwicklungen in einer fast… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sophos-x-ops-veroeffentlicht-cyber-spionage-report/a38338/