Blog

Latest articles from SOCRadar

Hydra Aftermath and the Future of Dark Web Marketplaces
January 19, 2023

Hydra Aftermath and the Future of Dark Web Marketplaces

By SOCRadar Research Russian-speaking Hydra Market was the biggest among darknet markets, with a $1B turnover in 2020. It was also the largest narcotic market among the countries of the former USSR.  With the operation started by German… Continue Reading

SOCRadar Launches New CTI Solution for SOC Analysts
January 18, 2023

SOCRadar Launches New CTI Solution for SOC Analysts

Introducing CTI4SOC, SOCRadar's stand-alone threat intelligence to meet the needs of SOC analysts. With its comprehensive features to close the skill gap of organizations, CTI4SOC will function as an extension of your security teams for a solid cybersecurity posture.… Continue Reading

Threat Actors Use GitHub Codespaces Feature to Distribute Malicious Content
January 18, 2023

Threat Actors Use GitHub Codespaces Feature to Distribute Malicious Content

Since its public release in November 2022, GitHub Codespaces has been a popular environment among developers; however, researchers believe threat actors could also use it to launch attacks. According to researchers, Codespaces has a feature that can be… Continue Reading

January 18, 2023

The Week in Dark Web – 18 January 2023 – Partnership Posts, Data Leaks, and Requests

Powered by DarkMirror™ Threat actors seek to acquire new capabilities by forming partnerships with their peers to ensure continuity in cybercrime operations. By adding a new member to the team, they can both expand their… Continue Reading

January 17, 2023

What Do You Need to Know About the Critical RCE Vulnerability in Zoho’s ManageEngine? (CVE-2022-47966)

CVE-2022-47966, a critical vulnerability in a number of Zoho’s products, allows remote code execution without authentication. The use of a vulnerable third-party dependency called Apache Santuario is the root cause that enables the exploitation of the remote… Continue Reading

Attackers Infected a CircleCI Employee with Malware to Steal Customer Session Tokens
January 16, 2023

Attackers Infected a CircleCI Employee with Malware to Steal Customer Session Tokens

Software provider CircleCI confirmed that a data breach in December resulted in the theft of some of its customers' sensitive information. The breach occurred after an employee's computer was infected with data-stealing malware, which allowed access to the… Continue Reading

4 Lessons Learned from Log4Shell
January 16, 2023

4 Lessons Learned from Log4Shell

By SOCRadar Research Log4Shell vulnerability shook the cyber world to its core when it first became public in December 2021. It is a zero-day vulnerability discovered on the log4j logging library, which is widely used by Java applications. Apache… Continue Reading

Threat Actors Exploit CVE-2022-44877 RCE Vulnerability in CentOS Web Panel
January 13, 2023

Threat Actors Exploit CVE-2022-44877 RCE Vulnerability in CentOS Web Panel (CWP)

Update (16.01.2023): According to data gathered by researchers, the CVE-2022-46169 vulnerability in Cacti saw an increase in exploitation attempts, and the overall number is now less than two dozen. 6,427 Cacti hosts were found to… Continue Reading

Lessons Learned from Ransomware Attacks in 2022
January 13, 2023

5 Lessons Learned from Ransomware Attacks in 2022

By SOCRadar Research In 2022, SOCRadar researchers detected over 1700 alleged ransomware victims. The total number was approximately 29% higher than in 2021. According to another research conducted by Verizon in 2022, data breach incidents due to ransomware attacks… Continue Reading

Cacti Patched CVE-2022-46169 Critical RCE Vulnerability
January 11, 2023

Cacti Patched CVE-2022-46169 Critical RCE Vulnerability

Cacti patched a critical security flaw to prevent arbitrary code execution on Cacti-running servers.  Cacti is an open-source, web-based network monitoring and graphing tool that offers users a framework for fault management and operational monitoring.  What is… Continue Reading

SOCRadar Free Dark Web Training: Learn How to Navigate in the Shadows
January 11, 2023

SOCRadar Free Dark Web Training: Learn How to Navigate in the Shadows

The concept of the dark web plays a key role in today's increasingly complex cybercrime ecosystem. Threat actors share the datasets obtained from attacks on dark web platforms, on forums here, or their leak sites. They plan attacks… Continue Reading

5 Lessons Learned from Data Breaches in 2022
January 10, 2023

5 Lessons Learned from Data Breaches in 2022

By SOCRadar Research Online products and services are growing daily. Consumers are entrusting more personal information to online databases, and businesses are taking responsibility for more sensitive data. Cyberattacks to obtain data and associated data… Continue Reading

Ransomware Gangs Leak Large Amounts of Data in Recent Attacks: Hive and Vice Society
January 9, 2023

Ransomware Gangs Leak Large Amounts of Data in Recent Attacks: Hive and Vice Society

Ransomware gangs are known to release stolen data in retaliation if the ransom is not paid after successful encryption. This worsens the victim's situation and exposes sensitive information to anyone on the internet. Recent ransomware data leaks… Continue Reading

Dark Web Profile: Royal Ransomware
January 9, 2023

Dark Web Profile: Royal Ransomware

By SOCRadar Research Ransomware attacks have been rising in recent years, with the frequency of attacks increasing. In 2021, several high-profile ransomware attacks made headlines, such as the attack on the Colonial Pipeline. This attack resulted… Continue Reading

January 9, 2023

The Week in Dark Web – 9 January 2023 – Access Sales and Data Leakes

Powered by DarkMirror™ Threat actors continue to target popular social networking platforms. Twitter was awash with two significant data breaches in two weeks. By the end of 2022, the attackers claimed to have obtained 400M… Continue Reading

Major Cyberattacks in Review: December 2022
January 6, 2023

Major Cyber Attacks in Review: December 2022

In the last month, we have seen many cyber incidents, ranging from data breaches at retailers to various cyberattacks on cryptocurrency exchange platforms. These types of incidents can harm a company's reputation and lead to the theft of… Continue Reading

200M+ Twitter Users' Email Addresses and 250M+ Deezer Users' Information Leaked Online
January 5, 2023

200M+ Twitter Users’ Email Addresses and 250M+ Deezer Users’ Information Leaked Online

On a well-known hacker forum, a data leak containing the email addresses of 235 million Twitter users was made public.  Data from 5.4 million Twitter users collected from numerous threat actors and combined with information from other breaches were… Continue Reading

January 4, 2023

The Week in Dark Web – 4 January 2023 – Access Sales, Data, and Malware Leakes

Powered by DarkMirror™ Entering the first week of the year, the most sensational incident on the dark web was the sale of 30M customer data allegedly belonging to Indian Railways. Again, LockBit did not sit… Continue Reading

Synology Fixes a Max Severity RCE Vulnerability in VPN Server Products
January 4, 2023

Synology Fixes a Max Severity RCE Vulnerability in VPN Server Products

Taiwanese NAS device manufacturer Synology has released a security update to address a critical vulnerability with a CVSS score of 10. The vulnerability, tracked as CVE-2022-43931, affects Synology router products that can be set up as VPN servers to… Continue Reading

How Easy Is It to Guess Fortune 500 Executives' Passwords?
January 4, 2023

How Easy Is It to Guess Fortune 500 Executives’ Passwords?

Recently, many cyberattacks on large corporations have begun with acquiring credentials via multiple methods, particularly social engineering and stealer malware. Obtaining the passwords of a senior executive rather than an ordinary employee is the cherry on… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo