ChromeLoader campaign uses VHD files disguised as cracked games and pirated softwareThreat actors behind the ChromeLoader malware campaign are using VHD files disguised as popular games, experts warn. Researchers...
Month: February 2023
Dutch Police arrests 3 men involved in a massive extortion scheme. One of them is an ethical hacker
Dutch Police arrests 3 men involved in a massive extortion scheme. One of them is an ethical hackerThe Dutch police arrested three individuals as a result...
PureCrypter used to deliver AgentTesla to govt organizations
PureCrypter used to deliver AgentTesla to govt organizationsAn unknown threat actor is targeting government organizations with the PureCrypter downloader, Menlo Security firm reported. Menlo Labs researchers...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad Cyber Security News SecurityAffairs
PlugX Trojan disguised as a legitimate Windows open-source tool in recent attacks
PlugX Trojan disguised as a legitimate Windows open-source tool in recent attacksResearchers detailed a new wave of attacks distributing the PlugX RAT disguised as a legitimate...
Weekly Update 326
Weekly Update 326Despite having both my tripod and mic in the wrong suitcase in the wrong place, Scott and I still pulled together a weekly vid...
Weekly Update 325
Weekly Update 325For the first time in I don't know how long, I couldn't do this live. Turns out both cell and wifi in Lapland are,...
Weekly Update 327
Weekly Update 327It's my last weekly update on the road for a while! As enjoyable as travel is, I'm looking forward to getting back to a...
Weekly Update 328
Weekly Update 328We made it! That's 2022 done and dusted, and what a year it was, both professionally and personally. It feels great to get to...
Weekly Update 329
Weekly Update 329Strap yourself in, this is a big one! Big video, big breach (scrape?), and a big audience today. The Twitter incident consumed a heap...
Weekly Update 330
Weekly Update 330Big week! So big, in fact, that I rushed into this week's update less prepared and made it a very casual one, which is...
Pwned or Bot
Pwned or BotIt's fascinating to see how creative people can get with breached data. Of course there's all the nasty stuff (phishing, identity theft, spam), but...
Weekly Update 331
Weekly Update 331Well and truly back into the swing of things in the new year, I think what I've found most satisfying this week is to...
Weekly Update 333
Weekly Update 333Getting everything out nice and early today so we can get out there in hit the wake park in the balmy "well over 30C"...
Weekly Update 332
Weekly Update 332Breaches all over the place today! Well, this past week, and there's some debate as to whether one of them is a breach, a...
Pwned Passwords Adds NTLM Support to the Firehose
Pwned Passwords Adds NTLM Support to the FirehoseI think I've pretty much captured it all in the title of this post but as of about a...
Weekly Update 335
Weekly Update 335No cyber. It's literally a "cyber-free" week, as least far as the term relates to security things. Instead, I'm unboxing an armful of Insta360...
Weekly Update 334
Weekly Update 334Did I really need to get a connected BBQ? No more than I needed to connect most of the other things in the house...
Weekly Update 336
Weekly Update 336Hey, it's double-Troy! I'm playing with the Insta360 Link cam, a gimbal-based model that can follow you around the room. It's tiny and pretty...
0 - CT 0 - CT - Cybersecurity Architecture - OWASP Security 0 - CT - Cybersecurity Vendors - Cloudflare Cyber Security News Troyhunt
Down the Cloudflare / Stripe / OWASP Rabbit Hole: A Tale of 6 Rabbits Deep ? ? ? ? ? ?
Down the Cloudflare / Stripe / OWASP Rabbit Hole: A Tale of 6 Rabbits Deep ? ? ? ? ? ?I found myself going down a...
Researchers Warn: Cybercriminals Are Targeting Data Center Providers
Researchers Warn: Cybercriminals Are Targeting Data Center ProvidersThere has been a surge in cyber-attacks against cloud service providers (CSPs) and managed service providers (MSPs). Resecurity recently alerted...
Warning! New Malware Hijacks YouTube and Facebook Accounts
Warning! New Malware Hijacks YouTube and Facebook AccountsA new S1deload Stealer malware campaign infects YouTube and Facebook users as hackers try to use their devices for...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Cyber Security News heimdalsecurity
Rackspace Ransomware Attack Update: What You Need to Know
Rackspace Ransomware Attack Update: What You Need to KnowDuring the recent Rackspace ransomware attack, the company confirmed hackers accessed customer data. Rackspace staff and cybersecurity researchers have...
What Is Managed Extended Detection and Response (MXDR)?
What Is Managed Extended Detection and Response (MXDR)?Managed Extended Detection and Response (MXDR) is yet another step toward the perfect security solution. Researchers designed MXDR with...
0 - CT 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad Cyber Security News heimdalsecurity
Activision Breached: Here Is What Happened
Activision Breached: Here Is What HappenedGame developer Activision confirms that it suffered a data breach in December 2022. The threat actors gained access to the company’s...
Access-as-a-Service: How to Keep Access Brokers Away from Your Organization
Access-as-a-Service: How to Keep Access Brokers Away from Your OrganizationAn attacker’s access to the network is often traced back to a succession of events, which network...
What Is Internet Control Message Protocol (ICMP)?
What Is Internet Control Message Protocol (ICMP)?The Internet Control Message Protocol (ICMP) is a protocol built into the IP suite whose main function is to allow...
0 - CT 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad Cyber Security News heimdalsecurity
Hackers Claim They Breached Telus, Canada’s Second-largest Telecom Company
Hackers Claim They Breached Telus, Canada’s Second-largest Telecom CompanyTelus is now investigating the possibility of a data breach affecting its corporate data. The Canadian telecom company...
WSUS Alternative for Patch Management
WSUS Alternative for Patch ManagementWe already know that patching is a practice of the utmost importance when it comes to the security of businesses. WSUS has...
KPI Examples for Patch and Vulnerability Management
KPI Examples for Patch and Vulnerability ManagementVulnerability and patch management are vital cogs in an organization’s cyber-hygiene plan. According to a recent Verizon cyber-safety report, more...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Cyber Security News heimdalsecurity
Food Giant Dole, Victim of a Ransomware Attack
Food Giant Dole, Victim of a Ransomware AttackDole Food Company, one of the world’s largest suppliers of fresh fruit and vegetables, has revealed that it has...