Read all Blogs from this Author
.jpg)
The cybersecurity landscape continues to evolve, and threat actors are constantly finding new ways to exploit vulnerabilities. One such tactic involves the absence of the "X-Frame-Options" HTTP header, which can leave websites susceptible to clickjacking attacks. In this blog, we delve into a recent campaign that leverages this vulnerability to serve phishing pages, compromising sensitive information from multiple companies worldwide.
CloudSEK's threat research team has uncovered a ransomware attack disrupting India's banking system, targeting banks and payment providers. Initiated through a misconfigured Jenkins server at Brontoo Technology Solutions, the attack is linked to the RansomEXX group.
Read all Whitepapers and reports from this Author
.png)
The report "Beyond the Storefront: E-commerce and Retail Threat Insights" highlights the growing cyber threats to the e-commerce and retail sectors, including a surge in ransomware attacks, hacktivist activities, and data breaches. It emphasizes the need for enhanced security measures as these industries face increasing risks from financially motivated attacks and politically driven hacktivism.
Read More.png)
The report "MichaMichaBot: Unmasking the Threats Exploiting Missing 'X-Frame-Options' Headers" reveals how cybercriminals exploit this vulnerability to launch phishing attacks by embedding legitimate websites in iframes with fake login panels. It provides insights into these attack methods and practical strategies to secure digital assets against such threats.
Read More.webp)
Our whitepaper, "Unveiling Maorrisbot: The Inner Workings of an Android Trojan Malware," explores the sophisticated methods and impacts of Maorrisbot malware, offering insights and strategies to protect your devices. Download it to learn how to safeguard against this significant Android threat.
Read MoreRead all knowledge base articles from this Author
