Twilio hackers hit over 130 orgs in massive Okta phishing attacks
Threat analysts have discovered the phishing kit responsible for thousands of attacks against 136 high-profile organizations that have compromised 9,931…
Twilio hackers hit over 130 orgs in massive Okta phishing attack
Threat analysts have discovered the phishing kit responsible for thousands of attacks against 136 high-profile organizations that have compromised 9,931…
China’s APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload
The state-sponsored threat actor has switched up its tactics, also adding an automated SQL-injection tool to its bag of tricks…
Winnti hackers split Cobalt Strike into 154 pieces to evade detection
The Chinese Winnti hacking group, also known as 'APT41' or 'Wicked Spider,' targeted at least 80 organizations last year and…
When Efforts to Contain a Data Breach Backfire
Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive…
How hackers are stealing credit cards from classifieds sites
A new credit card stealing campaign is underway in Singapore, snatching the payment details of sellers on classifieds sites through…
Huge network of 11,000 fake investment sites targets Europe
Researchers have uncovered a gigantic network of more than 11,000 domains used to promote numerous fake investment schemes to users in…
Hundreds of Elasticsearch databases targeted in ransom attacks
A campaign targeting poorly secured Elasticsearch databases has deleted their contents and dropped ransom notes on 450 instances, demanding a…
SideWinder hackers plant fake Android VPN app in Google Play Store
Phishing campaigns attributed to an advanced threat actor called SideWinder involved a fake VPN app for Android devices published on…
Interpol arrests alleged leader of the SilverTerrier BEC gang
After a year-long investigation that involved Interpol and several cybersecurity companies, the Nigeria Police Force has arrested an individual believed…