cyber attack
Auto Added by WPeMatico
-
In December 2024, during the festive Christmas season, Iran launched a sophisticated cyber attack on an Israeli software company, resulting in catastrophic consequences. The attack led to a complete data wipe-out, paralysis of IT infrastructure, and the defacement of the company’s official website, sending shockwaves across the business and technology sectors. The Iranian hacking group,…
-
On the eve of Christmas 2024, many Americans will be traveling to visit loved ones and attend church services to celebrate the holiday, expressing gratitude and spreading joy. Some will take to the highways in their cars, others will board trains, and a significant portion will opt for air travel, which is both faster and…
-
Researchers discovered a malware campaign targeting the npm ecosystem, distributing the Skuld info stealer through malicious packages disguised as legitimate tools. The threat actor, “k303903,” compromised hundreds of machines before the packages were removed. Subsequent analysis revealed that “k303903” likely operates under the aliases “shegotit2” and “pressurized,” all exhibiting identical or highly similar tactics, techniques,…
-
The Lazarus Group has recently employed a sophisticated attack, dubbed “Operation DreamJob,” to target employees in critical sectors like nuclear energy, which involves distributing malicious archive files disguised as legitimate job offers. Once executed, these files unleash a multi-stage infection chain, comprising a downloader, loader, and backdoor, allowing the threat actor to establish persistent access…
-
A new phishing-as-a-service (PaaS) platform called “FlowerStorm” has emerged, targeting Microsoft 365 users. This platform has quickly gained traction following the unexpected disruption of its predecessor, Rockstar2FA, in November 2024. Rockstar2FA, an updated version of the DadSec phishing kit, suffered a partial infrastructure collapse on November 11, 2024. Sophos researchers Sean Gallagher and Mark Parsons…