Afternoon Dessert – 2022-12-07


Welcome to another Afternoon Dessert breakout:

Chinese Hackers Using Russo-Ukrainian War Decoys to Target APAC and European Entities
The China-linked nation-state hacking group referred to as Mustang Panda is using lures related to the ongoing Russo-Ukrainian War to attack entities in Europe and the Asia Pacific.
That’s according to the BlackBerry Research and Intelligence Team, which analyzed a RAR archive file titled “Political Guidance for the new EU approach towards Russia.rar.” Some of the targeted countries include
Read more….

How XDR Helps Protect Critical Infrastructure
Critical infrastructure is important for societal existence, growth, and development. Societies are reliant on the services provided by critical infrastructure sectors like telecommunication, energy, healthcare, transportation, and information technology. Safety and security are necessary for the optimal operation of these critical infrastructures. Critical infrastructure is made up of digital
Read more….

Vice Society Ransomware Attackers Targeted Dozens of Schools in 2022
The Vice Society cybercrime group has disproportionately targeted educational institutions, accounting for 33 victims in 2022 and surpassing other ransomware families like LockBit, BlackCat, BianLian, and Hive.
Other prominent industry verticals targeted include healthcare, governments, manufacturing, retail, and legal services, according to an analysis of leak site data by Palo Alto Networks
Read more….

Microsoft: November updates break ODBC database connections
Microsoft is working to address a new known issue affecting apps using ODBC database connections after installing the November 2022 Patch Tuesday Windows updates. […]
Read more….

CryptosLabs ‘pig butchering’ ring stole up to $505 million since 2018
A previously unknown investment scam group named ‘CryptosLabs’ has stolen up to €480 million ($505 million) from victims in France, Belgium, and Luxembourg, since the launch of its operation in 2018. […]
Read more….

Google: State hackers still exploiting Internet Explorer zero-days
Google’s Threat Analysis Group (TAG) revealed today that a group of North Korean hackers tracked as APT37 exploited a previously unknown Internet Explorer vulnerability (known as a zero-day) to infect South Korean targets with malware. […]
Read more….

Hackers use new Fantasy data wiper in coordinated supply chain attack
The Iranian Agrius APT hacking group is using a new ‘Fantasy’ data wiper in supply-chain attacks impacting organizations in Israel, Hong Kong, and South Africa. […]
Read more….

CloudSEK claims it was hacked by another cybersecurity firm
Indian cybersecurity firm CloudSEK says a threat actor gained access to its Jira server after compromising one of its employees’ Jira accounts using stolen credentials. […]
Read more….

Follow for more…

%d bloggers like this: