March 2023 – Security & Technical Blog

Cisa

#StopRansomware: LockBit 3.0

March 16, 2023

SUMMARY Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail ransomware variants and [more…]

Cisa

Threat Actors Exploit Progress Telerik Vulnerability in U.S. Government IIS Server

March 15, 2023

SUMMARY From November 2022 through early January 2023, the Cybersecurity and Infrastructure Security Agency (CISA) and authoring organizations identified the presence of indicators of compromise [more…]

Cisa

#StopRansomware: Royal Ransomware

March 2, 2023

Post Content

Cisa

Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

March 2, 2023

Post Content

Cisa

Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors

March 2, 2023

Post Content

Cisa

#StopRansomware: Daixin Team

March 2, 2023

Post Content

Cisa

Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester

March 2, 2023

Post Content

Cisa

#StopRansomware: Hive Ransomware

March 2, 2023

Post Content

Cisa

#StopRansomware: Cuba Ransomware

March 2, 2023

Post Content

Cisa

Protecting Against Malicious Use of Remote Monitoring and Management Software

March 2, 2023

Post Content

Breaking News

Springtail aka Kimsuky: New Linux Backdoor Added to Toolkit

Spring Cleaning with LATRODECTUS: A Potential Replacement for ICEDID

ITG05 Uses Fake Hamas Execution Video as Bait

ViperSoftX Uses Deep Learning-based Tesseract to Exfiltrate Information

Revealing Spammer Infrastructure With Passive DNS – 226 Toll-Themed Domains Targeting Australia

Exploring the Metamorfo Banking Trojan

Log4j Exploited by XMRig Cryptominer Malware: Analysis and Mitigation

Payload Trends in Malicious OneNote Samples

Springtail: New Linux Backdoor Added to Toolkit

Springtail aka Kimsuky: New Linux Backdoor Added to Toolkit

Spring Cleaning with LATRODECTUS: A Potential Replacement for ICEDID

ITG05 Uses Fake Hamas Execution Video as Bait

ViperSoftX Uses Deep Learning-based Tesseract to Exfiltrate Information

Month: March 2023

#StopRansomware: LockBit 3.0

Threat Actors Exploit Progress Telerik Vulnerability in U.S. Government IIS Server

#StopRansomware: Royal Ransomware

Impacket and Exfiltration Tool Used to Steal Sensitive Information from Defense Industrial Base Organization

Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors

#StopRansomware: Daixin Team

Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester

#StopRansomware: Hive Ransomware

#StopRansomware: Cuba Ransomware

Protecting Against Malicious Use of Remote Monitoring and Management Software

You May Also Like:

Springtail aka Kimsuky: New Linux Backdoor Added to Toolkit

Spring Cleaning with LATRODECTUS: A Potential Replacement for ICEDID

ITG05 Uses Fake Hamas Execution Video as Bait

ViperSoftX Uses Deep Learning-based Tesseract to Exfiltrate Information

Revealing Spammer Infrastructure With Passive DNS – 226 Toll-Themed Domains Targeting Australia

Exploring the Metamorfo Banking Trojan

Log4j Exploited by XMRig Cryptominer Malware: Analysis and Mitigation

Payload Trends in Malicious OneNote Samples

Breaking News

Top Tagged