Category: Threat Intel Reports
-
Compromised ultralytics PyPI package delivers crypto coinminer
Executive Summary——————————————————————————————————————————————————–On December 4, a malicious version 8.3.41 of the popular AI library *ultralytics* — which has almost 60 million…
-
End-of-Year PTO: Days Off and Data Exfiltration with Formbook
By: Adam Martin and Nathaniel SagibandaThe holiday season is a time of joy and relaxation, but it often brings an…
-
[FUNKSEC] – Ransomware Victim: mtgazeta[.]uz
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[FUNKSEC-] — Ransomware Victim: mtgazeta-[.-]uz=================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) Ransomware Group: **FUNKSEC**=============================### VICTIM…
-
Why SOC Roles Need to Evolve to Attract a New Generation
* [Cybersecurity Operations](/cybersecurity-operations)* [Cybersecurity Careers](/cybersecurity-operations/cybersecurity-careers)Why SOC Roles Need to Evolve to Attract a New Generation Why SOC Roles Need to…
-
Alleged ShinyHunters member returned to France after prison in the U.S., now facing French charges
On January 9, 2024, DataBreaches reported that French national Sébastien Raoult had been sentenced in a Seattle federal court, but…
-
Cobalt Strike Beacon Detected – 13[.]127[.]114[.]160:443
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 13-[.-]127-[.-]114-[.-]160:443===============================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
Russian BlueAlpha APT Abuses Cloudflare Tunnels To Deliver Custom Malware
The state-sponsored cyber threat group BlueAlpha has been active since at least 2014 and has recently upgraded its malware delivery…
-
Ultralytics AI model hijacked to infect thousands with cryptominer
The popular Ultralytics YOLO11 AI model was compromised in a supply chain attack to deploy cryptominers on devices running versions…
-
Cobalt Strike Beacon Detected – 101[.]133[.]156[.]69:7001
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 101-[.-]133-[.-]156-[.-]69:7001================================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
Researchers Uncover Malicious Use Of Cobalt Strike Servers In Cyber Attacks
Cybersecurity researchers have identified a cluster of servers exploiting the latest version of Cobalt Strike, a legitimate [penetration testing tool](https://cybersecuritynews.com/penetration-testing-tools/),…