Summary: Cybercriminals are using fake “verification” apps in online dating scams to steal information and money, according to the FBI. This scam is similar to romance scams and pig butchering schemes that have become increasingly prevalent in recent years. Threat Actor: Cybercriminals Victim: Indiv…
Tag: DARK WEB
Fletchen Stealer is a Rust-based information-stealing malware offered as stealer-as-a-service, featuring sophisticated anti-analysis defenses to hinder detection and analysis. The report details its data collection, persistence, exfiltration, and evolving capa…
FortiGuard Labs analyzed two recent ransomware families: KageNoHitobito, which encrypts only local drives and appends a “.hitobito” extension, and DoNex (likely derived from DarkRace), which encrypts both local disks and network shares and uses a configurable …
Summary: The Department of Justice has announced the arrest of the founders of Samourai Wallet, a cryptocurrency mixing service that allegedly facilitated money laundering and sanctions evasion, obscuring the origins of at least $100 million in criminal proceeds. Threat Actor: Samourai Wallet | Samo…
Red Ransomware (Red CryptoApp) emerged in early 2024, publishing victim data on its “Wall of Shame” Data Leak Site (DLS) and signaling ongoing activity after initial targets. The group uses phishing and vulnerability exploitation for infection, encrypts files …
Summary: The Department of Health and Human Services (HHS) has not yet received HIPAA breach reports from Change Healthcare or UnitedHealth Group regarding their recent cyberattack, and HHS is urging HIPAA-covered entities to fulfill their breach reporting duties if protected health information is c…
Curated list of bookmarks that are usefulf or OSINT activities. They are broken down into appropriate categories such as: Search Engines Services Lists Leak Sites (to monitor if yours or your organisations information may be exposed) Chat & File Sharing The file is designed to be imported&n…
Summary: The HelloKitty ransomware operation has rebranded as HelloGookie and released passwords for previously leaked CD Projekt source code, Cisco network information, and decryption keys from old attacks. Threat Actor: HelloGookie | HelloGookie Victim: CD Projekt Red, Cisco | CD Projekt Red, Cisc…
Curated bookmark list categorized by area and event monitoring, person of interest search, corporate profiling, mapping, AI, intelligence analysis, reporting tools, collective tools, cryptocurrency, country specific, verification and fact-checking. They are broken down into appropriate categories su…
As the digital landscape continues to evolve, the United States finds itself at the forefront of emerging cybersecurity challenges. With its critical infrastructure, extensive government networks, and vibrant economy, the nation remains a prime target for a myriad of cyber threats. From state-sponso…
Amibreached.com is a service developed by Cyble Inc., designed to help individuals and companies determine if their personal data has been exposed on the dark web. The platform allows users to search for various types of personal information, such as email addresses, phone numbers, and IP addresses,…
Summary: This article discusses the rise of infostealer malware attacks and how cybercriminals are turning credential stealing into a profitable business. It highlights the increasing value of corporate credentials in the cybercrime market and the impact of these attacks on victims, particularly in…
Cyber threats are not just theoretical but often materialize in the form of individuals or groups targeting critical infrastructures and organizations worldwide. Our interview dives deep into the mindset and motivations of a threat actor who operates under the alias “USDoD.” This persona has been associated with high-profile cyber incidents, one…
Summary: The Akira ransomware operation has breached the networks of over 250 organizations and earned approximately $42 million in ransom payments, targeting victims across various industry verticals worldwide. Threat Actor: Akira | Akira ransomware Victim: Various organizations | Akira ransomware…
At its core, threat hunting is the practice of proactively searching for signs of malicious activities or…