Hostinger’s Preview Domain Feature Abused to Launch Phishing Campaigns and Evade Detection
Hostinger’s preview domain feature abused to host phishing sites
August 4, 2022
Latest Threat Intel. Here and Now.
Darkweb Mentions
Techniques, Tactics & Procedures (TTPs) Employed by Hacktivist Group DragonForce Malaysia
DragonForce has been actively targeting Indian entities under #OpsPatuk and #OpsIndia. Breach of some sensitive Government websites containing PII, military operations, and other government secrets.
July 28, 2022
Generaly OTP Bot Setup for MFA Bypass Affecting P2P Services
Generaly, a new OTP bot setup capable of capturing OTP, Card CVV, pin codes, and recordings of the spoofed calls. The bot has a dedicated Telegram channel to capture & display information.
July 26, 2022
Profiling YDIO, the Blackhat Group Behind #OpBRICS
XVigil discovered a new operation named #OpBRICS launched by the threat actor group Your Data is Ours (YDIO) against the following five major emerging economies:
July 21, 2022
What they do in the ShadowSEO: An Underground SEO from Russia
XVigil discovered a threat actor advertising the services for search engine optimization (SEO) and website ranking under the name of ‘Shadow SEO’, on a cybercrime forum.
July 21, 2022
YTStealer Harvesting YouTube Account Credentials
XVigil has identified an info stealer malware named YTStealer targeting YouTube creators and stealing authentication cookies. The stealer enables an attacker to gain access to control, modify, and monetize the accounts.
July 21, 2022
Hacktivist Group DragonForce Actively Targeting Indian Entities, Shares an Exploit for a Critical Confluence Server Vulnerability CVE-2022-26134
XVigil identified a post on a Telegram channel where the hacktivist group, DragonForce Malaysia has shared an exploit to CVE-2022-26134 to actively target and exploit Indian entities.
July 15, 2022
Tracking the Operators of the Newly Emerged BlueSky Ransomware
CloudSEK’s contextual AI digital risk platform XVigil discovered a financially motivated ransomware group, dubbed BlueSky, speculated to be connected to the Conti ransomware group.
July 15, 2022
Stormous Ransomware Group Runs Opinion Polls, Leaks Intellectual Property of Indian Companies
CloudSEK team has identified Stormous ransomware campaigns targeting multiple organizations globally. The threat group is financially motivated and their latest chain of attacks has been directed at Indian entities as well.
July 7, 2022
Ekipa Remote Access Trojan Designed by Russian Hacktivists for “Targeted Attacks”
XVigil discovered a threat actor advertising a macro RAT (Remote Access Trojan) dubbed “Ekipa”, created by Russian hacktivists.
July 7, 2022
Not another Threat intel platform
Threatintel Redefined
Keep up with the latest strains of Malware, Phishing Lures, Indicators of Compromise, and Data Leaks which are precise and Specific.
Get Alerted
Sign up for our Daily Cyber Brief, and be the first to receive the latest cyber news and threat alerts, from across the world.
CloudSEK is a Digital risk protection Enterprise HQ in Singapore
Product and Modules
About us