Earth Preta Evolves Malware Tactics with Advanced Strategies
The group’s focus has remained within the Asia-Pacific (APAC) region, targeting government entities using worm-based malware and spear-phishing campaigns.
Edward Crowder
Browser Extension Exploits: Detection and Mitigation Strategies
TrustedSec researchers published a detailed analysis on detecting browser extension exploitation in enterprise environments. Web browsers continue to be a primary target for cyber threats, as tools like Redline Malware or SharpChrome steal sensitive data such as cookies and login credentials.
Meduza Stealer Targets Russian Companies via Phishing Campaigns
On August 2024, BI.ZONE released a detailed report revealing increased phishing attacks leveraging the Meduza Stealer malware to target Russian organizations.
CISA Releases Four New ICS Advisories Addressing Critical Vulnerabilities
On September 5, 2024, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued four new advisories highlighting vulnerabilities in Industrial Control Systems (ICS) used across multiple sectors.
Akira Ransomware Campaign Exploits SonicWall SSLVPN Vulnerability
Akira ransomware affiliates leverage a vulnerability (CVE-2024-40766) in SonicWall's firewall devices, compromising SSLVPN user accounts not integrated with centralized authentication solutions
ToneShell Backdoor Used to Target Attendees of the IISS Defence Summit
The group is known for its cyber espionage activities targeting government organizations, primarily in Southeast and East Asia. This recent campaign, however, focuses on attendees of the upcoming International Institute for Strategic Studies (IISS) Defence Summit
Chinese APT Exploits Visual Studio Code to Target Southeast Asian Governments
On September 6, 2024, Unit 42 researchers released a report detailing a new cyber espionage campaign by the Chinese Advanced Persistent Threat (APT) group known as "Stately Taurus."