Feb 16, 2024
Threat Actor Profile: ScarCruft / APT37

Threat Actor Profile: ScarCruft / APT37 ScarCruft, also widely known as APT37 or Reaper APT, is an espionage group associated with North Korean state activities that target high-value individuals. The...

Learn More
Feb 16, 2024
Fortifying the Digital Frontier: Australia's Pioneering Cyber Shields ...

Fortifying the Digital Frontier: Australia’s Pioneering Cyber Shields Strategy In 2022, Following the Medibank breach in November, Australia’s Cyber Security Minister Clare O’Neil hi...

Learn More
Feb 15, 2024
Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cl...

Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cloud Bucket A recent event involving a misconfigured cloud storage bucket owned by BMW has highlighted the crucial role of cloud se...

Learn More
Feb 15, 2024
CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, ...

CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, and More (CVE-2024-20738, CVE-2024-20719, CVE-2024-20720) In a recent alert, CISA highlighted Adobe’s release of security up...

Learn More
Feb 14, 2024
Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android,...

Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android, Including One Critical (CVE-2024-24691) Zoom, the well-known video conferencing platform, patched 7 security vulnerabilities in a...

Learn More
Feb 14, 2024
Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern

Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern [Update] February 16, 2024: “US State Department’s Reward for Information on ALPHV/BlackCat Ransomware” In the ever-evolving lands...

Learn More
Feb 14, 2024
Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and...

Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and CVE-2024-21351 Under Exploitation [Update] February 29, 2024: “Lazarus Group Leverages CVE-2024-21338 As a Zero-Day to Deliver Ro...

Learn More
Feb 14, 2024
Top Linux Bash Commands that SOC Analysts Should Know

Top Linux Bash Commands that SOC Analysts Should Know Within the domain of Cyber Threat Intelligence (CTI), where various tools and processes are deployed for vigilant defense, Bash commands are one s...

Learn More
Feb 13, 2024
Dark Web Profile: 3AM Ransomware

Dark Web Profile: 3AM Ransomware In late 2023, a new and distinct ransomware group named 3AM Ransomware emerged. It came to the forefront as a fallback for other ransomware, notably during failed depl...

Learn More
Feb 12, 2024
Unauthorized Fortinet VPN Access, Chrome Extension Loader, New macOS S...

Unauthorized Fortinet VPN Access, Chrome Extension Loader, New macOS Stealer, and More Explore the latest revelations from the SOCRadar Dark Web Team; our latest discoveries involve unauthorized VPN s...

Learn More
Feb 12, 2024
Major Cyber Attacks in Review: January 2024

Major Cyber Attacks in Review: January 2024 As January 2024 dawned, the digital atmosphere braced itself for another year’s cybersecurity challenges. Throughout the month, organizations experien...

Learn More
Feb 12, 2024
Dark Web Profile: Sandman APT

Dark Web Profile: Sandman APT The Sandman APT group has garnered massive attention in 2023 for its targeted attacks against telecommunications providers in regions including Europe and Asia. As reveal...

Learn More
Feb 09, 2024
Dark Bounty – From Out of Scope to Out of Interest

Dark Bounty – From Out of Scope to Out of Interest The digital realm thrives on the continuous push and pull between cybersecurity experts and malicious actors. Within this dynamic ecosystem, bug boun...

Learn More
Feb 09, 2024
RCEs in FortiOS SSL VPN, ‘shim’; Latest Ivanti Flaw Possibly Exploited...

RCEs in FortiOS SSL VPN, ‘shim’; Latest Ivanti Flaw Possibly Exploited (CVE-2024-21762, CVE-2023-40547, CVE-2024-22024) [Update] February 16, 2024: “Scanning Activity Detected for CVE-2024-22024 in Iv...

Learn More
Feb 09, 2024
Retrospective – SOCRadar in 2023

Retrospective – SOCRadar in 2023 2023 has been a year we left behind with bitter and sweet memories. Although it will leave its mark on the long journey of humanity as a year marked by natural disaste...

Learn More
Feb 09, 2024
Cybersecurity Challenges in Indonesia’s 2024 Elections

Cybersecurity Challenges in Indonesia’s 2024 Elections ...

Learn More
Feb 08, 2024
How to Combat Fraud with Threat Intelligence: Cutting-Edge Pathway

How to Combat Fraud with Threat Intelligence: Cutting-Edge Pathway Organizations have increasingly moved significant portions of their operations online to streamline customer service processes. Inste...

Learn More
Feb 08, 2024
Cisco Fixed Critical CSRF Flaws in Expressway Gateways (CVE-2024-20252...

Cisco Fixed Critical CSRF Flaws in Expressway Gateways (CVE-2024-20252 and CVE-2024-20254) Cisco patched multiple security vulnerabilities, including critical ones, affecting its Expressway Series gat...

Learn More
Feb 08, 2024
Dark Peep #10: The Cold of Russia 2.0

Dark Peep #10: The Cold of Russia 2.0 Gear up, digital explorers! You’re about to dive into the latest edition of “Dark Peep #10” where we decode the mysteries of the cyber universe with a sprinkle of...

Learn More
Feb 07, 2024
Critical JetBrains TeamCity Authentication Bypass (CVE-2024-23917); CI...

Critical JetBrains TeamCity Authentication Bypass (CVE-2024-23917); CISA Adds Chrome Type Confusion to KEV (CVE-2023-4762) JetBrains recently discovered a critical authentication bypass vulnerability ...

Learn More