Month: July 2024
-
Akira Ransomware Targets the LATAM Airline Industry
An in-depth analysis examined a threat actor utilizing Akira ransomware to compromise a Latin American airline. The attacker gained initial…
-
ShadowRoot Ransomware Targeting Turkish Businesses
An analysis reveals a basic ransomware campaign targeting Turkish enterprises. The attack commences with a malicious PDF attachment delivered via…
-
Braodo Info Stealer Targeting Vietnam and Abroad
CYFIRMA discovered Braodo Stealer, a Python-based malware active since early 2024, primarily targeting users in Vietnam but also present in…
-
Fake Microsoft Teams for Mac delivers Atomic Stealer
A malvertising campaign lures Mac users into downloading a counterfeit Microsoft Teams installer containing Atomic Stealer, a data-stealing malware. The…
-
Patch or Peril: A Veeam vulnerability incident
While the vulnerability CVE-2023-27532 was made public in March 2023 and subsequently patched by Veeam for versions 12/11a and later…
-
CVE20244577 Exploits in the Wild One Day After Disclosure
One of the most recent examples of this onslaught lies in a critical vulnerability discovered in PHP (versions 8.1.*, before…
-
VayGren and Mr.Burns: Strong Ties in Finance
F.A.C.C.T experts analyzed the tools and connections of cybercriminals attacking Russian accountants. An analysis of the infection chain of the…