The threat actor group, TeamTNT, compromised multiple cloud instances and containerized environments.The target list includes Docker, Redis server, AWS, and Kubernetes.

An unauthorized information disclosure vulnerability that allowed threat actors to access the customer data on the registration page of Akasa Air (akasaair[.]com)

CloudSEK’s uncovered yet another improvised modus operandi used by threat actors to target banking customers in India through a phishing campaign.

CloudSEK DRP discovered a threat actor claiming to have compromised Uber, the American mobility service provider. To demonstrate the legitimacy of the claims, the actor has posted unauthorized messages on the HackerOne page of the company.

16 million user PII records compromised from India’s Swachhata Platform. Leaked data contains email and password combos.

Two post-auth 0-day vulnerabilities were discovered in the latest version of the MS Exchange servers.The vulnerabilities are tagged CVE-2022-41040 (SSRF) and CVE-2022-41082 (RCE).

Category: Malware Intelligence Type/Family: Botnet Industry: Finance & Banking Region: Global Source*: C3 Executive Summary THREAT IMPACT MITIGATION Apollo OTP bot advertised on the cybercrime forum. Discord-based bot capable of making spoofed calls using Google Voice. Captured OTP can be used to bypass 2FA and gain complete access to bank accounts. Implement bot-detection technologies and […]

Upgraded version of Generaly OTP bot advertised on a cybercrime forum. The bot has a dedicated Telegram channel to capture & display information. Captured OTP can be used to bypass 2FA and gain complete access to bank accounts.