Is Iran’s APT34 behind the Sea Turtle cyber espionage campaign?
The cyber security experts: There are many similarities on TTPs, targets and purposes. The credential harvesting could be complementary to the WebMask project on DNS Hijack.
Carbanak malware source code exposed for the first time
FireEye cyber security experts found two RAR archives on VirusTotal. The trojan (aka FIN7, Anunak or Cobalt) is one of the most dangerous that belongs to cybercrime.
Sea Turtle campaign is harvesting credentials in Middle East and North Africa
Cisco Talos cyber security experts: At least 40 organizations across 13 different countries were compromised by a state-sponsored actor who exploits DNS hijacking.
Gnosticplayers is back with a new batch of 65.5 million leaked records
The cyber security experts: There will be a rise of cybercrime attacks in the next future. The stolen data come from 6 breached companies and include user’s physical address.
Cyber Security: “Yomi: The Malware Hunter” becomes “public”
The “all italian” Yoroi-Cybaze sandbox will be shared for free with the InfoSec community. This to increase global cooperation against the threat.
Cybercrime: new variant of GoBrut malware targets Unix systems via WordPress
Alert Logic cyber security experts: It exploits an ELF variant and multiple C2 servers. The actor behind is Magecart group and the threat is growing.
Instagram has a new foe: Instainsane, that performs multi-threaded brute force attacks
It’s a dangerous Shell Script that can bypass login limiting and test infinite number of passwords, with a rate of about 1000/min with 100 attemps at once.
Xwo, a new form of malware, is scanning Internet for a future huge cyber attack
AT&T Alien Labs cyber security experts: It’s a Python-based bot scanner, that search for exposed web services and default passwords. It’s related to MongoLock and Xbash.
Cybercrime groups are partnering to distribute banking malware
IBM X-Force cyber security experts: TrickBot Trojan is cooperating with IcedID. It shows a larger trend of intergang collaboration among operators.
Gearbest, one of the top e-commerce companies, suffers a major data breach
VPNMentor’s cyber security experts found that the Chinese giant database is completely unsecured. Safety and privacy of customers is at high risk.