Category: Cyberattacks

MGM Grand Cyber Attack Analysis

Post author By Sohrab Farooq
Post date September 28, 2023
Categories In Cyberattacks
No Comments on MGM Grand Cyber Attack Analysis
Featured

Executive Summary MGM Resorts International recently fell victim to a meticulously coordinated cyber attack that led to severe operational impairments across the entire organization. This report aims to provide a comprehensive understanding of the attack vectors employed by the threat actors, as well as the specific techniques used to compromise MGM’s digital infrastructure. Operational Impact […]

New Variant of XLoader macOS Malware Disguised as ‘OfficeNote’ Productivity App

Overview: A new and sophisticated variant of the XLoader macOS malware has emerged, this time concealed under the façade of a seemingly innocent office productivity app named “OfficeNote.” This malicious version of XLoader has been bundled in a standard Apple disk image called “OfficeNote.dmg” and is showing signs of an extensive campaign targeting Mac users. […]

Discord.io Confirms Breach with Theft of 760K Users’ Data

Post author By Sohrab Farooq
Post date August 15, 2023
Categories In Cyberattacks
No Comments on Discord.io Confirms Breach with Theft of 760K Users’ Data
Featured

Discord.io, a third-party service providing custom invites to Discord channels, has temporarily closed its doors following a data breach affecting 760,000 members. This service, separate from the official Discord site, enabled server owners to create personalized invitations to their channels. A community of over 14,000 members was built around this service. The Breach Yesterday, a […]

Protect from EvilProxy Phishing Kit That Target High-Level Executives

Post author By Sohrab Farooq
Post date August 15, 2023
Categories In Cyberattacks
No Comments on Protect from EvilProxy Phishing Kit That Target High-Level Executives

Here’s How to Protect Your Organization The alarming increase in the use of a phishing-as-a-service (PhaaS) toolkit called EvilProxy to execute account takeover attacks on executives at prominent companies has become a significant cybersecurity concern. Between March and June 2023, Proofpoint has identified an ongoing hybrid campaign that has targeted thousands of Microsoft 365 user […]

Unveiling Space Pirates’ Expanding Cyber Campaign in Russia and Serbia

Post author By Sohrab Farooq
Post date August 3, 2023
Categories In Cyberattacks
No Comments on Unveiling Space Pirates’ Expanding Cyber Campaign in Russia and Serbia

In a startling revelation, the notorious threat actor known as Space Pirates has been exposed for orchestrating attacks against 16 organizations across Russia and Serbia over the past year. Armed with novel tactics and a growing cyber arsenal, these cybercriminals have expanded their interests and geographical reach, posing a significant threat to government agencies, educational […]

US Companies to Disclose Cyber Attacks in 4 Days, As Per New SEC Regulations

Post author By Sohrab Farooq
Post date July 29, 2023
Categories In Cyberattacks
No Comments on US Companies to Disclose Cyber Attacks in 4 Days, As Per New SEC Regulations

The U.S. Securities and Exchange Commission (SEC) has put forth new regulations that obligate publicly listed companies to reveal cyber attack details within four days, if such attacks significantly impact their financial standing. This decision marks a significant transformation in the disclosure procedures of cyber breaches. SEC chair Gary Gensler stated, “Whether a company loses […]

Massive Data Breach: Over 400 Organizations Hit by CLOP Ransomware’s MOVEit Exploitation

Post author By Sohrab Farooq
Post date July 25, 2023
Categories In Cyberattacks
No Comments on Massive Data Breach: Over 400 Organizations Hit by CLOP Ransomware’s MOVEit Exploitation
Featured

CVE-2023-34362 The Russian cybercriminal group known as ‘Clop’ leveraged a weakness in the MOVEit product suite by Progress Software in late May, leading to extensive data theft from unguarded networks. As per the German cybersecurity research enterprise, KonBriefing, the MOVEit security breach has affected a staggering 421 organizations and over 22 million individuals to date. […]

Microsoft Word Exploitations Unleash LokiBot Malware

Post author By Sohrab Farooq
Post date July 17, 2023
Categories In Cyberattacks
No Comments on Microsoft Word Exploitations Unleash LokiBot Malware
Featured

Known vulnerabilities in Microsoft Word are now being exploited by cybercriminals as phishing traps to deliver the malicious LokiBot on compromised systems. “LokiBot, also referred to as Loki PWS, is a notorious information-stealing Trojan, which has been on the radar since 2015,” says Cara Lin from Fortinet FortiGuard Labs. “Its primary targets are Windows systems […]

File transfer software hacked, MOVEit Transfer

Post author By Sohrab Farooq
Post date July 14, 2023
Categories In Cyberattacks
No Comments on File transfer software hacked, MOVEit Transfer

Nova Scotia’s Cybersecurity Breach Affects Region of Queens Municipality June 15, 2023: A cybersecurity intrusion occurred on May 29 and 30, 2023, influencing data files within the MOVEIt file transfer system employed by the Nova Scotia government and other organizations for transmitting large files. The breach had a direct impact on the Region of Queens […]

Microsoft Curbs Chinese Cyber Espionage Aiming at Western European Governments

Post author By Sohrab Farooq
Post date July 14, 2023
Categories In Cyberattacks
No Comments on Microsoft Curbs Chinese Cyber Espionage Aiming at Western European Governments

Date: July 12, 2023 | Threat Intel / Cyber Espionage On Tuesday, Microsoft declared that it had successfully thwarted a cyber espionage attempt led by a Chinese nation-state actor. This operation targeted two dozen entities, including several government agencies, with the intent to seize sensitive data. Starting on May 15, 2023, the cyber assault began […]