ذكاء التهديدات

CloudSEK threat intelligence advisory on malware-laced Google Chrome, Microsoft Edge extensions, pose as video downloader applications.

RCE vulnerability in Zimbra Collaboration Suite (ZCS) being actively exploited in the wild.

CloudSEK’s contextual AI digital risk platform XVigil discovered a threat actor group claiming to have targeted an Indian government website.

Email addresses and passwords of 6835 WHO employees resurface on Nulled. These credentials were also posted on Pastebin, last month.

Team Mysterious Bangladesh announces another wave of attack Group compromised multiple Indian entities in the past. DDoS & Defacement attacks are amongst the most prominent attacks.

XVigil discovered a threat actor advertising a “battle-tested” reverse proxy/PHP phishing app called “NakedPages”, on a cybercrime forum.

AutoWarp vulnerability in the Azure Automation service that allows unauthorized access to other Azure customer accounts.

XVigil identified a post on an English-speaking cybercrime forum mentioning Jenkins as one of the TTPs used by a threat actor. This module has hidden desktop takeover capabilities to get clicks on ads.