ذكاء التهديدات

CloudSEK’s contextual AI digital risk platform has uncovered a large-scale ongoing BEC scam that is targeting vendors of Middle East-based organizations and individuals.

CloudSEK Threat Intelligence Advisory on Mushtik botnet, targets IoT devices, cloud systems to mine cryptocurrencies, exploits existing flaws

Two post-auth 0-day vulnerabilities were discovered in the latest version of the MS Exchange servers.The vulnerabilities are tagged CVE-2022-41040 (SSRF) and CVE-2022-41082 (RCE).

Prynt Stealer operating on stealth mode to steal sensitive data & credentials from the victims’ systems, browsers, & crypto wallets.

The fake Jio message is linked to a shared Android Package file which when executed, generates ad revenue, gains access to contacts.

DeepPaste user sends stock images to buyers, claims to have the vaccine for COVID-19, developed by Israel. The user takes advantage of anxious customers.

Hacker group and dark web marketplace CRYP70N1C0D3 hacks and sells the databases of official websites, and hires more hackers to do the same.

Watch out for a new malware campaign that is distributing files titled “Interim Guidance for CoViD19,” to lure recipients into installing the RAT malware.