CloudSEK’s contextual AI digital risk platform has uncovered a large-scale ongoing BEC scam that is targeting vendors of Middle East-based organizations and individuals.
New phishing-as-a-service platform named “Caffeine”, used to conduct phishing campaigns.
A new critical vulnerability on the very popular Apache Commons Text library reported and tracked as CVE-2022-42889, named Text4Shell.
The vulnerability affects the StringSubstitutor interpolator class which allows for string lookups leading to Remote Code Execution.
Two application that impersonates the Directorate of Kerala Lotteries. These applications lure people into buying lottery tickets online.
RansomHouse group has allegedly breached IPCA Laboratories.
The incident took place on 3 September 2022, and the current status is under encryption with approximately 6000 views.
AgainstTheWest targets WeChat & TikTok under Operation Renminbi.
Over 2 billion user records and 790 GB files leaked. Alibaba Cloud instance exploited.
Access to Acronis Cloud instance used by 43 US-based companies on sale.
Category: Adversary Intelligence Industry: Telecommunications Motivation: Financial Region: Indonesia Source*: F4 Executive Summary THREAT IMPACT MITIGATION Data breach affecting an Indonesian telecom firm, PT Telekomunikasi
Prynt Stealer operating on stealth mode to steal sensitive data & credentials from the victims’ systems, browsers, & crypto wallets.
Sign up for our Daily Cyber Brief, and be the first to receive the latest cyber news and threat alerts, from across the world.
Product and Modules