Several critical and high-severity vulnerabilities affecting Veeam Backup & Replication exploited by advertising fully weaponized tools for remote code execution.

Private crypting services offer strong protection and obfuscation. Any malicious tool can be encrypted to avoid detection by antivirus software or reverse engineering.

Andrastea threat actor group announced a data breach from MBDA, a European missile manufacturer having ties to NATO. Military sketches, documents underlying NATO’s requirements, and SOPs were exposed.

Desorden announces a cyberattack against Indonesia’s PT Jasamarga Tollway Operator. 252 GB data was exfiltrated from 5 servers.

Web shell access to Zimbra powered Webmail service of Bamboozle shared over cybercrime forum. Possible ZCS vulnerability exploited to gain access.

RCE vulnerability in Zimbra Collaboration Suite (ZCS) being actively exploited in the wild.

Prynt Stealer operating on stealth mode to steal sensitive data & credentials from the victims’ systems, browsers, & crypto wallets.

Category: Adversary Intelligence Industry: Telecommunications Motivation: Financial Region: Indonesia Source*: F4 Executive Summary THREAT IMPACT MITIGATION Data breach affecting an Indonesian telecom firm, PT Telekomunikasi Indonesia, and its subsidiaries. Tax cards, financial statements, and sensitive government documents exposed. Leaked documents could reveal business practices and IP. Compromised financial records can be used for social engineering […]