TeamTNT’s Cloud Credential Stealing Campaign
In the ever-evolving landscape of cybersecurity, threat actors continue to innovate and adapt their methods to exploit new technologies and platforms. One such group, known as TeamTNT, has been actively…
Act now! In-the-wild Zimbra vulnerability needs a workaround
Security experts are warning Zimbra users that a vulnerability for which there is no patch is being actively exploited in the wild. In a security update about the vulnerability, the…
Active Exploitation of Multiple Adobe ColdFusion Vulnerabilities
Rapid7 managed services teams have observed exploitation of Adobe ColdFusion in multiple customer environments. The attacks our team has responded to thus far appear to be chaining CVE-2023-29298 , a…
A technical analysis of the Quasar-forked RAT called VoidRAT
https://resources.securityscorecard.com/research/technical-analysis-of-the-quasar-forked-rat-called-void-rat Source: A technical analysis of the Quasar-forked RAT called VoidRAT / SecurityScoreCard
Black Basta Overview
Black Basta is a Russian-speaking group that was first spotted in early 2022. It is known for its double extortion attack, where it not only executes ransomware but also exfiltrates…
ISC China Report Summary
Original Document: https://isc.independent.gov.uk/wp-content/uploads/2023/07/ISC-China.pdf The “China” report by the Intelligence and Security Committee of Parliament provides an in-depth analysis of the perceived threats and challenges posed by China to the UK.…
SmokeLoader malware
SmokeLoader, also known as Dofoil, is a modular bot used primarily to download other malware onto a compromised system. It has been in operation since at least 2011 and has…
Microsoft Exchange Vulnerabilities
In the period from January to March, Microsoft Exchange Server software suffered from a series of significant data breaches caused by the exploitation of four vulnerabilities. These vulnerabilities were primarily…
Uber Data Breach of 2017: Lessons in Transparency and Accountability
In November 2017, Uber, the ride-hailing service provider, disclosed a significant data breach that occurred in late 2016. The breach impacted approximately 57 million Uber users and drivers worldwide, highlighting…
The Equifax Data Breach of 2017: An Unprecedented Cybersecurity Incident
In 2017, Equifax, one of the largest credit reporting agencies in the United States, experienced a massive data breach that exposed the personal information of millions of individuals. This breach…