#threat-actor

[ follow ]
#cybersecurity #malware #data-breach #phishing #credential-harvesting #european-commission #cloud-infrastructure
#cybersecurity
Information security
fromSecurityWeek
5 days ago

UNC6692 Uses Email Bombing, Social Engineering to Deploy 'Snow' Malware

A threat actor, UNC6692, impersonates IT support to deploy malware through phishing emails and malicious browser extensions.
fromDataBreaches.Net
6 months ago
Information security

Qantas says 'legal protections in place' as ScatteredLAPSUS$Hunters group threatens to release personal data - DataBreaches.Net

Tech industry
fromThe Hacker News
11 months ago

China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil

A China-linked threat actor is exploiting critical SAP NetWeaver vulnerabilities against organizations in Asia and Brazil since 2023.
The threat actor targets SQL injection vulnerabilities to infiltrate organizations.
Information security
fromSecurityWeek
5 days ago

UNC6692 Uses Email Bombing, Social Engineering to Deploy 'Snow' Malware

A threat actor, UNC6692, impersonates IT support to deploy malware through phishing emails and malicious browser extensions.
EU data protection
fromEngadget
1 month ago

European Commission confirms data breach

The European Commission experienced a cyber attack, resulting in the theft of over 350GB of data from its cloud infrastructure.
fromDataBreaches.Net
6 months ago
Information security

Qantas says 'legal protections in place' as ScatteredLAPSUS$Hunters group threatens to release personal data - DataBreaches.Net

Tech industry
fromThe Hacker News
11 months ago

China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil

A China-linked threat actor is exploiting critical SAP NetWeaver vulnerabilities against organizations in Asia and Brazil since 2023.
The threat actor targets SQL injection vulnerabilities to infiltrate organizations.
more#cybersecurity
fromSecurityWeek
2 months ago

Ad Tech Company Optimizely Targeted in Cyberattack

The threat actor gained access to Optimizely's systems through a sophisticated voice-phishing attack, but was unable to escalate privileges, install software, or create any backdoors in the Optimizely environment. The incident was confined to certain internal business systems including Zendesk, records in our Salesforce CRM, and a limited set of internal documents used for back-office operations.
Information security
Privacy professionals
fromTechRepublic
1 year ago

Microsoft: Windows CLFS Vulnerability Could Lead to 'Widespread Deployment and Detonation of Ransomware'

Microsoft identifies a critical zero-day vulnerability in CLFS used for ransomware deployment.
[ Load more ]