#threat-analysis

[ follow ]
#cybersecurity
Information security
fromITPro
2 months ago

300 days under the radar: How Volt Typhoon eluded detection in the US electric grid for nearly a year

The Volt Typhoon threat group accessed the US electric grid undetected for nearly a year, showcasing significant weaknesses in operational technology security.
Information security
fromDatabreaches
3 months ago

Meet NailaoLocker: a ransomware distributed in Europe by ShadowPad and PlugX backdoors

Green Nailao campaign targets multiple sectors globally, affecting European organizations in healthcare.
Custom ransomware named NailaoLocker was executed during the campaign.
Artificial intelligence
fromZDNET
4 weeks ago

Anthropic finds alarming 'emerging trends' in Claude misuse report

Generative AI tools like Claude are increasingly being misused by both skilled and unskilled actors for malicious purposes.
Tech industry
fromZero Day Initiative
2 weeks ago

Zero Day Initiative - CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

Monitor specific ports to detect attacks exploiting this vulnerability.
Verify ICC Profile file transfers for suspicious characteristics to prevent potential attacks.
Roam Research
fromThe Hacker News
13 hours ago

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

Threat actor ViciousTrap has compromised over 5,300 network devices globally, exploiting a critical Cisco vulnerability to create honeypot networks.
Information security
fromITPro
2 months ago

300 days under the radar: How Volt Typhoon eluded detection in the US electric grid for nearly a year

The Volt Typhoon threat group accessed the US electric grid undetected for nearly a year, showcasing significant weaknesses in operational technology security.
Information security
fromDatabreaches
3 months ago

Meet NailaoLocker: a ransomware distributed in Europe by ShadowPad and PlugX backdoors

Green Nailao campaign targets multiple sectors globally, affecting European organizations in healthcare.
Custom ransomware named NailaoLocker was executed during the campaign.
Artificial intelligence
fromZDNET
4 weeks ago

Anthropic finds alarming 'emerging trends' in Claude misuse report

Generative AI tools like Claude are increasingly being misused by both skilled and unskilled actors for malicious purposes.
Tech industry
fromZero Day Initiative
2 weeks ago

Zero Day Initiative - CVE-2024-44236: Remote Code Execution vulnerability in Apple macOS

Monitor specific ports to detect attacks exploiting this vulnerability.
Verify ICC Profile file transfers for suspicious characteristics to prevent potential attacks.
Roam Research
fromThe Hacker News
13 hours ago

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

Threat actor ViciousTrap has compromised over 5,300 network devices globally, exploiting a critical Cisco vulnerability to create honeypot networks.
more#cybersecurity
US news
fromwww.nytimes.com
8 months ago

Report Details Interview of Georgia Suspect in Prior School Shooting Threat

Anonymous tips warned of threats on Discord linked to a 13-year-old; he later shot two students and two teachers at his school.
[ Load more ]