Summary: This content discusses the advertising of a new Android Remote Trojan called Viper RAT on dark web forums and its capabilities. Threat Actor: Viper RAT | Viper RAT Victim: Android devices | Android devices Key Point : The Viper RAT is a new Android Remote Trojan that is being advertised on…
Tag: DARK WEB
MANILA, PHILIPPINES – Within this week, a series of data breaches, personal information from Toyota Makati, a renowned car dealership, Robinsons Malls, a prominent shopping mall chain, and S&R, a popular membership shopping club, has been compromised, affecting hundreds of thousands of customers. Toyota Makati Data Breach: An alleged data breach at Toyota Makati, discovered … Continue reading Massive Data Breaches Expose Personal Information of Hundreds of Thousands from Toyota Makati, Robinsons Malls, and S&R
Resecurity identifies a V3B phishing kit sold via Phishing-as-a-Service that targets EU banking customers, stealing credentials and OTPs through sophisticated social engineering and localized, multi-bank templates. The operation is led by the actor alias “Vssr…
CYFIRMA’s in-depth analysis identifies Vidar Stealer as a modular information-stealer sold as malware-as-a-service that uses obfuscation, environment checks, and process injection to evade analysis, while leveraging social media as part of its C2 and update in…
In a significant claim circulating dark web forum, a threat actor alleges to have obtained a vast amount of data from QuoteWizard.com and LendingTree, two prominent companies in the insurance and financial services sectors. The data, which purportedly spans 2TB when compressed, is said to include highly sensitive personal information on…
Ticketmaster owner Live Nation confirmed the Ticketmaster data breach that compromised the data of 560 million customers. ShinyHunters, the current administrator of BreachForums, recently claimed the hack of Ticketmaster and offered for sale 1.3 TB of data, including full details of 560 million customers, for $500,000. Stolen data includes names, emails, addresses,…
Summary: Managed Service Partners (MSPs) highlight cybersecurity as their top concern in staying competitive in the market, with challenges including staying on top of security technologies, employing more security analysts, and maintaining awareness of the latest threats. Threat Actor: N/A Victim:…
Summary: A threat actor known as “phant0m” is promoting a new Ransomware-as-a-Service (RaaS) called “SpiderX,” which is designed to be more advanced and harder to detect than its predecessor, Diablo ransomware. Threat Actor: phant0m | phant0m Victim: N/A Key Point : A threat actor named phant0m is a…
Infostealer malware activity rose notably in late 2023, with LummaC2, RedLine, and Raccoon leading the field and expanding the scope of data exfiltrated from users and organizations. The ReliaQuest report also outlines case studies, risks to sectors like healt…
This time, we’re not revealing a new cyber threat investigation or analysis, but I want to share some insights about the team behind all Sekoia Threat Intelligence and Detection Engineering reports. Let me introduce you to the Sekoia TDR team. TL;DR Sekoia Threat Detection & Research (TDR) is a…
In a cyber incident, a massive data breach involving du.ae (Emirates Integrated Telecommunications Company), a prominent telecommunications company in the UAE, has allegedly surfaced on the dark web. The leaked data, claimed to be a staggering 360.09 GB in size, is being offered for sale at $3200 USD. According to the…
CVE-2024-3273 is a critical command-injection vulnerability impacting end-of-life D-Link NAS devices, enabling remote control and potential data theft or device takeover. Active exploitation is being discussed on underground forums, with threat actors linked t…
NSIS-based crypters (NSIXloader) are used to protect and obfuscate a wide range of malware, complicating static analysis and enabling automatic unpacking. The article describes how these NSIS packers unpack, decrypt, and execute payloads (including RC4/XOR var…
The article warns that the Hajj season attracts online scams targeting pilgrims, including fake agencies, online registration scams, sub-standard travel arrangements, and social-media fraud. It also details impersonation …
In a troubling incident in the world of cybersecurity, a massive data set allegedly containing the personal information of 560 million Live Nation and Ticketmaster users has surfaced for sale on the dark web. The data, reportedly totaling 1.3 terabytes, is said to include sensitive customer details and financial information. The…