ذكاء التهديدات

CloudSEK threat intelligence advisory on Exchange ProxyLogon flaws CVE-2021-26855/ 26857/ 26858/ 27065 exploited by ransomware gangs and nation-state actors.

Researchers at CloudSEK observed a series of threats and potentially malicious campaigns ahead of Black Friday 2022.

CloudSEK’s XVigil has observed a spike in exposed Postman instances. This trend is especially concerning because Postman is used by 500,000 organizations and 20 million developers across the world.

CloudSEK's contextual AI digital risk platform XVigil has discovered a post on an English speaking cybercrime forum, sharing a database of PHI-IIIT Delhi for Forum credits. A total of 82 Databases were compromised and leaked data.

CloudSEK’s contextual AI digital risk platform XVigil discovered a financially motivated ransomware group, dubbed Faust, a variant of the Phobos ransomware family. The group encrypts victims’ files with a ‘.faust’ extension.

CloudSEK’s Threat Intelligence Team uncovered a campaign, actively running from the past 1.8 years, that attacks and brute forces the SSH. 

Several forum members have shown interest to procure the data that is being sold for $500. The data could be used to blackmail law enforcement officials.

Spyier claims to be the most popular spying solution that can hack an iPhone within minutes. Even the most secure Telegram chats are hackable.