Category: Threat Intel Reports
-
Malware locks browser in kiosk mode to steal Google credentials
A malware campaign uses the unusual method of locking users in their browser’s kiosk mode to annoy them into entering…
-
FBI tells public to ignore false claims of hacked voter data
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are alerting the public of false…
-
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.————————————————————————————————————————————–[Mythical Beasts…
-
Port of Seattle confirmed that Rhysida ransomware gang was behind the August attack
Port of Seattle confirmed on Friday that the Rhysida ransomware group was behind the cyberattack that hit the agency in…
-
Cobalt Strike Beacon Detected – 49[.]235[.]122[.]75:80
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 49-[.-]235-[.-]122-[.-]75:80=============================================================[September 15, 2024](https://www.redpacketsecurity.com/2024/09/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
Cobalt Strike Beacon Detected – 124[.]221[.]112[.]96:80
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 124-[.-]221-[.-]112-[.-]96:80==============================================================[September 15, 2024](https://www.redpacketsecurity.com/2024/09/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
A Deep Dive into a New ValleyRAT Campaign Targeting Chinese Speakers
FortiGuard Labs recently encountered an ongoing malware campaign specifically targeting Chinese speakers. The attack utilizes a multi-stage malware named ValleyRAT,…
-
YARA 4.5.2 Release, (Sat, Sep 14th)
[YARA 4.5.2 Release](/forums/diary/YARA+452+Release/31258/)===========================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31258 ‘Share on Facebook’)* [](http://twitter.com/share?text=YARA%204.5.2%20Release&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31258&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-09-14. **Last Updated** : 2024-09-14 21:37:44…
-
Where Are Governments in Their Zero-Trust Journey?
While the federal government deadline has arrived on implementing a zero-trust cybersecurity model, many state and local governments have committed…
-
New Linux Malware Exploiting Oracle Weblogic Servers
Oracle WebLogic Server is an application server that is primarily designed to develop, deploy, and manage enterprise applications based on…