News & Updates

CISO’s Expert Guide To CTEM And Why It Matters

/
Cyber threats evolve—has your defense strategy kept up? A new free guide available here explains why Continuous Threat Exposure Management (CTEM) is the smart approach for proactive cybersecurity.
This concise report makes a clear business case for why CTEM’s comprehensive approach is the best overall strategy for shoring up a business’s cyber defenses in the face of evolving attacks. It also
Threats

RedCurl/EarthKapre APT Attack Detection: A Sophisticated Cyber-Espionage Group Uses a Legitimate Adobe Executable to Deploy a Loader

/

The nefarious cyber-espionage hacking collective tracked as EarthKapre or RedCurl APT has resurfaced to target legal sector organizations using Indeed-themed phishing. In the latest attack, adversaries notorious for highly sophisticated offensive capabilities applied reconnaissance commands and tools, exfiltrated data, and deployed the EarthKapre/RedCurl loader. Detect RedCurl/EarthKapre APT Attacks In 2024, state-sponsored cyber groups from China, […]

The post RedCurl/EarthKapre APT Attack Detection: A Sophisticated Cyber-Espionage Group Uses a Legitimate Adobe Executable to Deploy a Loader appeared first on SOC Prime.

News & Updates

⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More

/
Welcome to this week’s Cybersecurity News Recap. Discover how cyber attackers are using clever tricks like fake codes and sneaky emails to gain access to sensitive data. We cover everything from device code phishing to cloud exploits, breaking down the technical details into simple, easy-to-follow insights.
⚡ Threat of the Week
Russian Threat Actors Leverage Device Code Phishing to Hack
News & Updates

New Golang-Based Backdoor Uses Telegram Bot API for Evasive C2 Operations

/
Cybersecurity researchers have shed light on a new Golang-based backdoor that uses Telegram as a mechanism for command-and-control (C2) communications.
Netskope Threat Labs, which detailed the functions of the malware, described it as possibly of Russian origin.
“The malware is compiled in Golang and once executed it acts like a backdoor,” security researcher Leandro Fróes said in an analysis
News & Updates

Pro-Russia collective NoName057(16) launched a new wave of DDoS attacks on Italian sites

/
Pro-Russia collective NoName057(16) launched DDoS attacks on Italian sites, targeting airports, the Transport Authority, major ports, and banks. The pro-Russia hacker group NoName057(16) launched a new wave of DDoS attacks this morning against multiple Italian entities. The group targeted the websites of Linate and Malpensa airports, the Transport Authority, the bank Intesa San Paolo, and […]
News & Updates

Content Creators: Why 2FA Isn’t Enough – How Hackers Bypass Basic Security

/
Two-Factor Authentication: A False Sense of Security?

Two-factor authentication (2FA) is widely promoted as a must-have security feature for all online accounts, including content creator accounts on platforms like YouTube, TikTok, and Instagram. While 2FA is an extra layer of security, it isn’t bulletproof. Hackers have evolved, developing ways to bypass it and hijack accounts with alarming efficiency.

In this article, we explain why 2FA isn’t enough, how attackers sidestep this defense, and

News & Updates

whoAMI attack could allow remote code execution within AWS account

/
Researchers warn that the whoAMI attack lets attackers publish an AMI with a specific name to execute code in an AWS account. Cybersecurity researchers at Datadog Security Labs devised a new name confusion attack technique, called whoAMI, that allows threat actors to execute arbitrary code execution within the Amazon Web Services (AWS) account by publishing […]
Exit mobile version