Cyber Espionage, Iran’s hackers targeted the US FCEB
The APT exploited the Log4Shell vulnerability, installed XMRig, moved laterally to the domain controller (DC), compromised credentials, and implanted Ngrok reverse proxies.
Cybercrime, Maui used by North Korean hackers to target Healthcare and Public Health
CISA, FBI and Treasury cybersecurity experts: The ransomware appears to be designed for manual execution by remote actors.
Cybercrime, Lazarus targets blockchain companies with TraderTraitor
The North Korea’s APT uses spear phishing emails to cryptocurrency firm employees that mimic recruitments for high-paying jobs: Goal: to download the malware.
Cybercrime, some APTs can fully access ICS / SCADA devices
DoE, CISA, NSA and FBI cybersecurity experts from: They have developed custom tools that attack Schneider Electric and OMRON Sysmac NEX PLCs, and OPC-UA.
US-Russia, Prigozhin ends up on the FBI’s most wanted list
Putin's chef, in addition to being the head of Wagner's contractors, also allegedly financed the IRA to interfere with American politics.
Cyber Espionage, Russian hackers exploit MFA protocols and “PrintNightmare” flaw
FBI-CISA cybersecurity experts: The threat actors used a misconfigured account set to default MFA protocols and the (CVE-2021-34527).
Cybercrime, the US DoJ established the cryptocurrency unit
The National Cryptocurrency Enforcement Team (NCET), guided by the prosecutor Eun Young Choi, will work with the FBI cybersecurity experts.
Cyber Espionage, Russia-linked threat actors target CDC networks
FBI, NSA and CISA cybersecurity experts: They attack both large and small CDCs and subcontractors in different areas.
Cybercrime, the FBI: Risks of attacks on the 2022 Beijing Winter Olympics
Threat actors could target the Games in China and participants with DDoS, malware, social engineering, data theft or leaks, phishing, disinformation campaigns, or insider threats.
Cybercrime, ransomware gangs exploit events that could affect a victim’s stock value
The FBI cybersecurity experts: They identify non-publicly available information, which they threaten to release or use as leverage during the extortion.