SNS Sender | Active Campaigns Unleash Messaging Spam Through the Cloud
Threat actors leverage cloud services to conduct massive smishing campaign through AWS Simple Notification Service.
Read More
Threat actors leverage cloud services to conduct massive smishing campaign through AWS Simple Notification Service.
FBot arms threat actors with a multi-function attack tool designed to hijack cloud, Saas and web services.
Cloud credentials stealing campaign expands to target Azure and Google Cloud via unpatched web app vulnerabilities.
Availability of leaked Babuk source code is fuelling a proliferation of file lockers targeting VMware ESXi.
New Linux version of the IceFire ransomware have been observed in recent network intrusions of media and entertainment enterprises.
An in-the-wild ELF variant of Cl0p ransomware shows the gang is looking beyond traditional Windows targets.
.NET malware loaders distributed through malvertising are using obfuscated virtualization for anti-analysis and evasion in an ongoing campaign.
New PolyVice ransomware is likely in use by multiple threat actors building re-branded payloads with the same custom encryption scheme.
SocGholish operators continue to infect websites at a massive scale, and the threat actor is ramping up its infrastructure to match.
Black Basta operational TTPs are described here in full detail, revealing previously unknown tools and techniques and a link to FIN7.