Category: Threat Intel Reports


  • Quick & Dirty Obfuscated JavaScript Analysis, (Sun, Nov 24th)

    [Quick -& Dirty Obfuscated JavaScript Analysis](/forums/diary/Quick+Dirty+Obfuscated+JavaScript+Analysis/31468/)================================================================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31468 ‘Share on Facebook’)* [](http://twitter.com/share?text=Quick%20%26%20Dirty%20Obfuscated%20JavaScript%20Analysis&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31468&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-11-24. **Last Updated**…


  • Irish researcher finds 1.1 million NHS employee records were leaked

    James Cox reports: A Dublin cybersecurity researcher, Aaron Costello, has found that 1.1 million NHS employee records were leaked online…


  • Hackers abuse Avast anti-rootkit driver to disable defenses

    ![Malware](https://www.bleepstatic.com/content/hl-images/2023/10/31/Avast.jpg)A new malicious campaign is using a legitimate but old and vulnerable Avast Anti-Rootkit driver to evade detection and take…


  • Microsoft testing Windows 11 support for third-party passkeys

    ![Passwordless](https://www.bleepstatic.com/content/hl-images/2024/07/02/identity-cybersecurity-framework.jpg) Microsoft is now testing WebAuthn API updates that add support for support for using third-party passkey providers for Windows…


  • Windows 11 24H2 update blocked on PCs with Assassin’s Creed, Star Wars Outlaws

    ![Windows 11 red background](https://www.bleepstatic.com/content/hl-images/2024/09/30/Windows-11-red.jpg)Microsoft is blocking the Windows 11 24H2 update on computers with some Ubisoft games, like Assassin’s Creed,…


  • [RAWORLD] – Ransomware Victim: Gulf Energy Maritime

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[RAWORLD-] — Ransomware Victim: Gulf Energy Maritime======================================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[RAWORLD] – Ransomware Victim: Gulf Energy Maritime…


  • [APT73] – Ransomware Victim: gureco[.]pl

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[APT73-] — Ransomware Victim: gureco-[.-]pl=============================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[APT73] – Ransomware Victim: gureco[.]pl 1’)Ransomware Group: **APT73**===========================### VICTIM…


  • [APT73] – Ransomware Victim: lgpunjab[.]gov[.]in

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[APT73-] — Ransomware Victim: lgpunjab-[.-]gov-[.-]in=======================================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[APT73] – Ransomware Victim: lgpunjab[.]gov[.]in 1’)Ransomware Group: **APT73**===========================### VICTIM…


  • [INCRANSOM] – Ransomware Victim: Darlington EMS

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[INCRANSOM-] — Ransomware Victim: Darlington EMS==================================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[INCRANSOM] – Ransomware Victim: Darlington EMS 1’)Ransomware Group:…


  • [INCRANSOM] – Ransomware Victim: Schuck-Gruppe

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[INCRANSOM-] — Ransomware Victim: Schuck-Gruppe=================================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[INCRANSOM] – Ransomware Victim: Schuck-Gruppe 1’)Ransomware Group: **INCRANSOM**===============================### VICTIM…