Cyber Espionage Campaign Targets Tibetan Media and Universities In a recent development, a China-linked nation-state group known as TAG-112 has launched a cyber espionage campaign. This sophisticated attack targeted Tibetan media and university websites, aiming to facilitate the delivery of the Cobalt Strike post-exploitation toolkit. This toolkit is known to be used for follow-on information…
Mysterious Elephant and the Asynshell Malware Threat The threat actor known as Mysterious Elephant has recently been linked with an advanced version of malware called Asynshell. This cybercriminal group has deployed innovative attack tactics, including the use of Hajj-themed lures, to trick unsuspecting victims. The Knownsec 404 team shared this information in an analysis published…
Threat actors with ties to Russia are increasingly linked to a sophisticated cyber espionage campaign targeting various organizations across Central Asia, East Asia, and Europe. This troubling development has been highlighted by Recorded Future's Insikt Group. They have labeled this activity cluster TAG-110, which shares connections with UAC-0063, a threat group monitored by Ukraine's Computer…
Google Workspace has quickly become the productivity backbone for businesses worldwide, offering an all-in-one suite with email, cloud storage, and collaboration tools. This single-platform approach makes it easy for teams to connect and work efficiently, enabling seamless digital transformation that’s both scalable and adaptable. As companies make the shift from traditional methods to cloud-based solutions,…
Threat actors with ties to Russia are currently engaged in a cyber espionage campaign targeting organizations in Central Asia, East Asia, and Europe. This campaign, identified by Recorded Future's Insikt Group as TAG-110, raises significant concerns about the increasing threat landscape emanating from Russia. Understanding the Threat Actor: TAG-110 Origin and Connections TAG-110 is linked…
Tackling Cybercrime: Efforts by Meta Platforms, Microsoft, and the U.S. Department of Justice Cybercrime remains a significant threat to individuals and organizations worldwide. Recently, Meta Platforms, Microsoft, and the U.S. Department of Justice (DoJ) have announced independent actions to combat this growing problem. Their initiatives aim to disrupt services that enable scams, fraud, and phishing…
Cybersecurity Threats: Beware of Malicious Python Packages In November 2023, cybersecurity researchers unearthed two dangerous packages in the Python Package Index (PyPI). These packages, named gptplus and claudeai-eng, posed as popular artificial intelligence (AI) models such as OpenAI ChatGPT and Anthropic Claude. The purpose of these malicious packages was to deliver a harmful information stealer…
# Neznani napadalec in uhajanje podatkov Instagrama: Kaj morate vedeti Neznani napadalec naj bi trdil, da je pridobil in prodaja ogromno količino podatkov Instagrama, kar vključuje 489 milijonov vrstic informacij. Ta **uhajanje podatkov** je privedlo do resnih pomislekov o **kibernetski varnosti** in zlorabi razkritih informacij uporabnikov Instagrama. ## Podrobnosti domnevne kršitve podatkov Po poročilih na…
Gelsemium: Cyber Attacks and the New Linux Backdoor WolfsBane Recent findings from cybersecurity firm ESET reveal that the China-aligned advanced persistent threat (APT) actor known as Gelsemium is utilizing a new Linux backdoor called WolfsBane. This backdoor is significant because it is part of ongoing cyber attacks targeting East and Southeast Asia. These attacks show…
Understanding the Compromise of Palo Alto Networks Devices Recent reports indicate that as many as 2,000 Palo Alto Networks devices have been compromised due to newly disclosed security flaws. This alarming discovery highlights the vulnerabilities affecting many organizations worldwide. Palo Alto Networks equipment is widely used for cybersecurity, and any breach can have serious implications…