Category: Threat Intel Reports


  • Microsoft seized 240 sites used by the ONNX phishing service

    Microsoft disrupted the ONNX phishing service, seizing 240 sites and naming an Egyptian man as the operator behind the operation.———————————————————————————————————————————Microsoft…


  • Wireshark 4.4.2 Released, (Sat, Nov 23rd)

    [Wireshark 4.4.2 Released](/forums/diary/Wireshark+442+Released/31460/)=======================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31460 ‘Share on Facebook’)* [](http://twitter.com/share?text=Wireshark%204.4.2%20Released&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31460&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-11-23. **Last Updated** : 2024-11-23 12:42:31…


  • China-linked APT Gelsemium uses a new Linux backdoor dubbed WolfsBane

    China-linked APT Gelsemium has been observed using a new Linux backdoor dubbed WolfsBane in attacks targeting East and Southeast Asia.————————————————————————————————————————————–China-linked…


  • Decrypting a PDF With a User Password, (Sat, Nov 23rd)

    [Decrypting a PDF With a User Password](/forums/diary/Decrypting+a+PDF+With+a+User+Password/31466/)===================================================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31466 ‘Share on Facebook’)* [](http://twitter.com/share?text=Decrypting%20a%20PDF%20With%20a%20User%20Password&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31466&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-11-23. **Last…


  • A cyberattack on gambling giant IGT disrupted portions of its IT systems

    A cyberattack on gambling giant IGT disrupted its systems, forcing the company to take certain services offline.—————————————————————————————————————-[International Game Technology](https://en.wikipedia.org/wiki/International_Game_Technology) (IGT)…


  • [INCRANSOM] – Ransomware Victim: Alna-Bioscience

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[INCRANSOM-] — Ransomware Victim: Alna-Bioscience===================================================[November 23, 2024](https://www.redpacketsecurity.com/2024/11/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[INCRANSOM] – Ransomware Victim: Alna-Bioscience 1’)Ransomware Group: **INCRANSOM**===============================### VICTIM…


  • Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-0012 and CVE-2024-9474 (Updated Nov

    ![Logo](https://unit42.paloaltonetworks.com/wp-content/uploads/2021/07/PANW_Parent.png) ![Unit42 Logo](https://unit42.paloaltonetworks.com/wp-content/themes/unit42-v6/dist/images/unit42-logo-white.svg) Menu* [Tools](https://unit42.paloaltonetworks.com/tools/)* [ATOMs](https://unit42.paloaltonetworks.com/atoms/)* [Security Consulting](https://www.paloaltonetworks.com/unit42)* [About Us](https://unit42.paloaltonetworks.com/about-unit-42/)* [**Under Attack?**](https://start.paloaltonetworks.com/contact-unit42.html) * [Threat Research Center](https://unit42.paloaltonetworks.com ‘Threat Research’)* [High Profile…


  • Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’

    ![Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’](https://www.bleepstatic.com/content/hl-images/2023/12/07/Russian_hackers.jpg)Russian state hackers APT28 (Fancy Bear/Forest Blizzard/Sofacy) breached a…


  • QNAP pulls buggy QTS firmware causing widespread NAS issues

    ![QNAP](https://www.bleepstatic.com/content/hl-images/2022/04/27/QNAP_headpic.jpg) QNAP has pulled a recently released firmware update after widespread customer reports that it’s breaking connectivity and, in some…


  • Windows 10 KB5046714 update fixes bug preventing app uninstalls

    ![Windows 10](https://www.bleepstatic.com/content/hl-images/2021/04/17/windows-10-sapphire.jpg)Microsoft has released the optional KB5046714 Preview cumulative update for Windows 10 22H2 with six bug fixes, including a…