August 2023 – Page 2 – PossibleThreat Articles

Credit to Author: Microsoft Threat Intelligence| Date: Thu, 24 Aug 2023 16:30:00 +0000

China-based actor Flax Typhoon is exploiting known vulnerabilities for public-facing servers, legitimate VPN software, and open-source malware to gain access to Taiwanese organizations, but not taking further action.

The post Flax Typhoon using legitimate software to quietly access Taiwanese organizations appeared first on Microsoft Security Blog.

Security Sophos

Protecting Amazon S3 Buckets from Malicious Files

August 30, 2023 0 Comments products & services, sophos cloud, sophos cloud native security, sophos cloud optix

Credit to Author: Sally Adam| Date: Wed, 30 Aug 2023 16:16:33 +0000

Amazon S3 buckets are popular for file storage in the AWS platform. Their serverless element requires an alternative approach to traditional endpoint protection for detecting malicious files.

Security TrendMicro

Earth Estries Targets Government, Tech for Cyberespionage

August 30, 2023 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Ted Lee| Date: Wed, 30 Aug 2023 00:00:00 +0000

We break down a new cyberespionage campaign deployed by a cybercriminal group we named Earth Estries. Analyzing the tactics, techniques, and procedures (TTPs) employed, we observed overlaps with the advanced persistent threat (APT) group FamousSparrow as Earth Estries targets governments and organizations in the technology sector.

QuickHeal Security

Battling the Death Trap of Malicious Loan Apps

August 29, 2023 0 Comments Android, Applications, Cyber crime, cyber-fraud attacks, cyberbullying, Cybercrime, google apps, googleplaystore, instant loan apps, loan, Mobile Security, online frauds, Scam alert, scams, Social engineering, Spam, spyloan

Credit to Author: Digvijay Mane| Date: Wed, 30 Aug 2023 04:57:42 +0000

In the age of instant finance at our fingertips, loan apps have reshaped how we access funds. But…

The post Battling the Death Trap of Malicious Loan Apps appeared first on Quick Heal Blog.

MalwareBytes Security

FBI confirms Barracuda patch is not effective for exploited ESG appliances

August 29, 2023 0 Comments barracuda esg, cve-2023-2868, Exploits and vulnerabilities, news, seaspy, submarine, whirlpool

Categories: Exploits and vulnerabilities

Categories: News

Tags: Barracuda ESG

Tags: CVE-2023-2868

Tags: SEASPY

Tags: SUBMARINE

Tags: WHIRLPOOL

The FBI repeats the warning by Barracuda that all ESG appliances should immediately be replaced because the patch was ineffective.

MalwareBytes Security

“An influx of Elons,” a hospital visit, and magic men: Becky Holmes shares more romance scams: Lock and Code S04E18

August 29, 2023 0 Comments Podcast

Categories: Podcast

This week on the Lock and Code podcast, we speak with Becky Holmes about how she flips the script on romance scammers, and what more governments should be doing to help.

MalwareBytes Security

Cisco VPNs without MFA are under attack by ransomware operator

August 29, 2023 0 Comments akira, brute force, Business, Cisco, credential stuffing, news, password spraying, Ransomware, vpn

Categories: Business

Categories: News

Tags: Cisco

Tags: VPN

Tags: Akira

Tags: ransomware

Tags: brute-force

Tags: credential stuffing

Tags: password spraying

Several researchers are seeing ransomware attacks targetting Cisco VPNs without MFA

MalwareBytes Security

Meal delivery service PurFoods announces major data breach

August 29, 2023 0 Comments breach, Business, data, information, purfoods, Ransomware

Categories: Business

Tags: purfoods

Tags: breach

Tags: ransomware

Tags: data

Tags: information

We take a look at a breach notice from food delivery service PurFoods.

Independent Krebs Security

U.S. Hacks QakBot, Quietly Removes Botnet Infections

August 29, 2023 0 Comments doj, don alway, FBI, federal bureau of investigation, Latest Warnings, martin estrada, qakbot, Qbot, Ransomware, The Coming Storm, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 29 Aug 2023 18:35:25 +0000

The U.S. government today announced a coordinated crackdown against QakBot, a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. The international law enforcement operation involved seizing control over the botnet’s online infrastructure, and quietly removing the Qakbot malware from tens of thousands of infected Microsoft Windows computer systems.

Security Sophos

Mom’s Meals issues “Notice of Data Event”: What to know and what to do

August 29, 2023 0 Comments data breach, data loss, mdr, mom's meals, purfoods, ransomre, Ransomware

Credit to Author: Paul Ducklin| Date: Tue, 29 Aug 2023 16:51:14 +0000

It took six months for notifications to start, and we still don’t know exactly what went down… but here’s our advice on what to do.