Month: January 2025
-
A closer look at the Tria stealer campaign
A malicious Android campaign named Tria Stealer has been targeting users in Malaysia and Brunei since mid-2024. The campaign uses…
-
Threat Actors Exploit Government Website Vulnerabilities for Phishing Campaigns
Threat actors are exploiting vulnerabilities in government websites, particularly .gov domains, to conduct phishing campaigns. The abuse primarily involves using…
-
Security Brief: Threat Actors Take Taxes Into Account
Proofpoint researchers have identified an increase in campaigns and malicious domains impersonating tax agencies and financial organizations. This aligns with…
-
Unmasking the Shadow of PoisonPlugs Obfuscator
Since 2022, cyber espionage operations utilizing POISONPLUG.SHADOW have been tracked, employing a custom obfuscating compiler called ScatterBrain. This evolved version…
-
Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
A high-severity security flaw has been disclosed in Meta’s Llama large language model (LLM) framework that, if…
-
[FUNKSEC] – Ransomware Victim: punjab[.]gov[.]in
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[FUNKSEC-] — Ransomware Victim: punjab-[.-]gov-[.-]in=======================================================[January 26, 2025](https://www.redpacketsecurity.com/2025/01/) Ransomware Group: **FUNKSEC**=============================### VICTIM…
-
[SPACEBEARS] – Ransomware Victim: Metro Wire & Cable
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[SPACEBEARS-] — Ransomware Victim: Metro Wire -& Cable========================================================[January 26, 2025](https://www.redpacketsecurity.com/2025/01/) * [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[KILLSEC-] — Ransomware Victim: Let’s Secure Insurance========================================================[January 26, 2025](https://www.redpacketsecurity.com/2025/01/) UnitedHealth has revealed that 190 million Americans had their personal and healthcare data stolen in the Change Healthcare…
-
Ransomware gang uses SSH tunnels for stealthy VMware ESXi access
Ransomware actors targeting ESXi bare metal hypervisors are leveraging SSH tunneling…