Cybersecurity News - Page 405

All observed campaigns are using several unique tactics, techniques, and procedures (TTPs).

To gain initial access to organization’s systems the group uses account credentials obtained via technique known as password spraying or brute-force attacks.

The attackers use several tricks to avoid detection leveraging methods such as password protection and encoded macros.

The command and control server and IP address used in the new phishing campaign were previously observed in the Kimsuky campaign ties to North Korea.

The use of Tor network helps the malware operators to conceal its command and control servers and to avoid detection.

After infecting an Android mobile device, Filecoder scans the victim's contact list and sends links on ransomware to all the entries in the list.

URGENT/11 vulnerabilities pose a serious risk as they allow attackers to take over devices with no user interaction required.

The attackers inject multi-gateway skimmer in fake Google domains in order to steal payment data.

WatchBog is beginning to explore financial opportunities on a different platform.

Previously Intrusion Truth exposed several hackers involved in cyber operations carried out by APT10 and APT3 groups.