ذكاء التهديدات

Chinese based APT group TA413 target European officials via spear-phishing campaigns, deploys RAT payload dubbed Sepulcher.

CloudSEK’s uncovered yet another improvised modus operandi used by threat actors to target banking customers in India through a phishing campaign.

CloudSEK’s flagship digital risk monitoring platform XVigil discovered a post on a cybercrime forum, advertising the PII records of 30 million T-Mobile users, including their SSN, driver’s license, and date of DoB.

CloudSEK team has identified Stormous ransomware campaigns targeting multiple organizations globally. The threat group is financially motivated and their latest chain of attacks has been directed at Indian entities as well.

CloudSEK threat intelligence advisory on FluBot Android malware, that impersonates mobile banking applications to draw fake webview on targeted applications.

In this article, we will delve into the details of Daam Malware, a new threat that has ransomware capabilities. We will explore its origins, modus operandi, and ways to protect yourself from this malware. Read on to learn more.

CloudSEK’s Threat Intelligence Research team analyzed the profile of a threat actor handle that seems to be connected to a popular hacker group known as Shield Iran Security Team.

A new critical vulnerability on the very popular Apache Commons Text library reported and tracked as CVE-2022-42889, named Text4Shell. The vulnerability affects the StringSubstitutor interpolator class which allows for string lookups leading to Remote Code Execution.