ποΈ OPSEC Failure Exposes Coquettteβs Malware Campaigns on Bulletproof Hosting Servers ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting BPH provider called Proton66 to facilitate their operations. The findings come from DomainTools, which detected the activity after it discovered a phony website named cybersecureprotect.com hosted on Proton66 that masqueraded as an antivirus service. The threat intelligence firm said it.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The Computer Emergency Response Team of Ukraine CERTUA has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure facilities in the country with an aim to steal sensitive data. The campaign, the agency said, involved the use of compromised email accounts to send phishing messages containing links pointing to legitimate.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet is a free and opensource columnar data file format that's designed for efficient data processing and retrieval, providing support for complex data, highperformance.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft is warning of several phishing campaigns that are leveraging taxrelated themes to deploy malware and steal credentials. "These campaigns notably use redirection methods such as URL shorteners and QR codes contained in malicious attachments and abuse legitimate services like filehosting services and business profile pages to avoid detection," Microsoft said in a report shared with The.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The North Korean threat actors behind Contagious Interview have adopted the increasingly popular ClickFix social engineering tactic to lure job seekers in the cryptocurrency sector to deliver a previously undocumented Gobased backdoor called GolangGhost on Windows and macOS systems. The new activity, assessed to be a continuation of the campaign, has been codenamed ClickFake Interview by.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ AI Threats Are Evolving Fast β Learn Practical Defense Tactics in this Expert Webinar ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The rules have changed. Again. Artificial intelligence is bringing powerful new tools to businesses. But it's also giving cybercriminals smarter ways to attack. Theyre moving quicker, targeting more precisely, and slipping past old defenses without being noticed. And here's the harsh truth If your security strategy hasnt evolved with AI in mind, youre already behind. But youre not aloneand.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ AI Adoption in the Enterprise: Breaking Through the Security and Compliance Gridlock ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
AI holds the promise to revolutionize all sectors of enterprisefrom fraud detection and content personalization to customer service and security operations. Yet, despite its potential, implementation often stalls behind a wall of security, legal, and compliance hurdles. Imagine this alltoofamiliar scenario A CISO wants to deploy an AIdriven SOC to handle the overwhelming volume of security.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed details of a new vulnerability impacting Google's Quick Share data transfer utility for Windows that could be exploited to achieve a denialofservice DoS or send arbitrary files to a target's device without their approval. The flaw, tracked as CVE202410668 CVSS score 5.9, is a bypass for two of the 10 shortcomings that were originally disclosed by.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Counterfeit versions of popular smartphone models that are sold at reduced prices have been found to be preloaded with a modified version of an Android malware called Triada. "More than 2,600 users in different countries have encountered the new version of Triada, the majority in Russia," Kaspersky said in a report. The infections were recorded between March 13 and 27, 2025. Triada is the.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Cyber Agencies Warn of Fast Flux Threat Bypassing Network Defenses π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A joint cybersecurity advisory warns organizations globally about the defense gap in detecting and blocking fast flux techniques, which are exploited for malicious activities.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Cyber Agencies Warn of Fast Flux Threat Bypassing Network Defenses
A joint cybersecurity advisory warns organizations globally about the defense gap in detecting and blocking fast flux techniques, which are exploited for malicious activities
π Tj-actions Supply Chain Attack Traced Back to Single GitHub Token Compromise π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The threat actors initially attempted to compromise projects associated with the Coinbase cryptocurrency exchange, said Palo Alto Networks.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Tj-actions Supply Chain Attack Traced Back to Single GitHub Token Compromise
The threat actors initially attempted to compromise projects associated with the Coinbase cryptocurrency exchange, said Palo Alto Networks
π Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Mandiant warned that Chinese espionage actor UNC5221 is actively exploiting a critical Ivanti vulnerability, which can lead to remote code execution.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw
Mandiant warned that Chinese espionage actor UNC5221 is actively exploiting a critical Ivanti vulnerability, which can lead to remote code execution
π Major Online Platform for Child Exploitation Dismantled π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
An international law enforcement operation has shut down Kidflix, a platform for child sexual exploitation with 1.8m registered users.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Major Online Platform for Child Exploitation Dismantled
An international law enforcement operation has shut down Kidflix, a platform for child sexual exploitation with 1.8m registered users
π CrushFTP Vulnerability Exploited Following Disclosure Issues π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A critical authentication bypass flaw in CrushFTP is under active exploitation following a mishandled disclosure process.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
CrushFTP Vulnerability Exploited Following Disclosure Issues
A critical authentication bypass flaw in CrushFTP is under active exploitation following a mishandled disclosure process
π Amateur Hacker Leverages Russian Bulletproof Hosting Server to Spread Malware π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The cybercriminal uses the service of Proton66, an infamous Russianbased bulletproof hosting provider, to deploy malware.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Amateur Hacker Leverages Russian Bulletproof Hosting Server to Spread Malware
The cybercriminal uses the service of Proton66, an infamous Russian-based bulletproof hosting provider, to deploy malware
π Sensitive Data Breached in Highline Schools Ransomware Incident π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Highline Public Schools revealed that sensitive personal, financial and medical data was accessed by ransomware attackers during the September 2024 incident.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Sensitive Data Breached in Highline Schools Ransomware Incident
Highline Public Schools revealed that sensitive personal, financial and medical data was accessed by ransomware attackers during the 2024 incident
π Over Half of Attacks on Electricity and Water Firms Are Destructive π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Semperis claims 62 of water and electricity providers were hit by cyberattacks in the past year.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Over Half of Attacks on Electricity and Water Firms Are Destructive
Semperis claims 62% of water and electricity providers were hit by cyber-attacks in the past year
π Nearly 600 Phishing Domains Emerge Following Bybit Heist π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
BforeAI researchers discover 596 suspicious Bybitthemed domains designed to defraud visitors.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Nearly 600 Phishing Domains Emerge Following Bybit Heist
BforeAI researchers discover 596 suspicious Bybit-themed domains designed to defraud visitors
π1
π¦
Ransomware Attack Levels Remain High as Major Change Looms π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble Ransomware Attack Levels Remain High as Major Change Looms " dataimagecaption"Cyble Ransomware Attack Levels Remain High as Major Change Looms " datamediumfile"httpscyble.comwpcontentuploads202504CybleBlogsRansomwareAttacksRaaS300x150.jpg" datalargefile"httpscyble.comwpcontentuploads202504CybleBlogsRansomwareAttacksRaaS.jpg" title"Ransomware Attack Levels Remain High as Major Change Looms 1" March saw notable events, including a potential change at the top of the ransomware world, persistently high attacks, and the emergence of new groups. March 2025 ended on a surprising note when the onionbased data leak site DLS of RansomHub the largest ransomware group over the last year went offline, fueling speculation of a possible takeover. A few days later, rival DragonForce claimed ...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Ransomware Attacks Still SoaringβBig Change Ahead
March saw a potential leadership shift in ransomware attacks, sustained high attack volumes, and the rise of new threat groups.
π΅οΈββοΈ Medusa Rides Momentum From Ransomware-as-a-Service Pivot π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Shifting to a RaaS business model has accelerated the group's growth, and targeting critical industries like healthcare, legal, and manufacturing hasn't hurt either.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Medusa Rides Momentum From Ransomware-as-a-Service Pivot
Shifting to a RaaS business model has accelerated the group's growth, and targeting critical industries like healthcare, legal, and manufacturing hasn't hurt either.
π’ Verizon Call Filter API flaw couldβve exposed millions of Americansβ call records π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
A security flaw in Verizon's Call Filter app couldve allowed threat actors to access details of incoming calls for another user, a security researcher has found.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Verizon Call Filter API flaw couldβve exposed millions of Americansβ call records
The Verizon flaw couldβve had wide-reaching implications if exploited by malicious actors