UCH Logistics Ransomware Attack by Black Basta
UCH Logistics, a leading provider of transport services in the UK, recently experienced a ransomware attack by the Black Basta group. This attack involved the exfiltration of approximately 895 GB…
NetSupport as a RAT – The Resurgence of a Covert Threat
The NetSupport RAT has emerged as a significant cyber threat, exploiting legitimate remote administration tools for malicious purposes. This report provides an in-depth analysis of recent incidents, targets, and the…
Russian APT29 Exploits WinRAR and Ngrok in Embassy Cyberattacks
APT29, a Russian hacker group, has strategically employed the CVE-2023-38831 vulnerability in WinRAR in a series of cyberattacks targeting embassies. Known for its various aliases, including Cozy Bear and SolarStorm,…
Morgan Stanley’s Data Breach: A Case Study in Cybersecurity Negligence
Morgan Stanley, a renowned multinational investment bank and financial services company, has been fined $6.5 million due to insecure disposal of hardware containing unencrypted personal information, exposing millions of customers…
Threat Actor Profile: Lockbit
The LockBit ransomware group has emerged as a formidable cyber threat, targeting large corporations and disrupting global operations. This blog post delves into the recent activities of LockBit, highlighting their…
Boeing’s Cybersecurity Breach by LOCKBIT Ransomware
Boeing, a renowned aerospace company, recently fell victim to a cybersecurity incident perpetrated by the LOCKBIT ransomware group. The attack, which came to light in late October 2023, is a…
Threat Intelligence Report on Recent Citrix Vulnerabilities
In recent months, Citrix systems have faced significant cybersecurity challenges. The discovery of critical vulnerabilities, notably CVE-2023-4966 (Citrix Bleed) and CVE-2023-4967, has put numerous organizations at risk. These vulnerabilities have…
APT35 Expands Its Horizon – Password Spray Attacks Across Global Sectors
Since February 2023, APT35, a notorious Iranian-backed threat actor, has been intensifying its cyber operations with a series of global password spray attacks. These attacks represent a strategic shift in…
BellaCiao Malware – APT35’s New Chapter in Cyber Espionage
In May 2023, the cybersecurity world turned its attention to a significant development involving APT35, an Iranian-backed cyber threat actor. Researchers uncovered advancements in BellaCiao, a sophisticated .NET-based malware attributed…
Discord.io Data Breach Exposes Information of 760,000 Members
Introduction: Discord.io, a popular third-party service that allows server owners to create custom invites to their Discord channels, has confirmed a data breach that exposed the information of 760,000 members.…