Feb 25, 2025
Categories
Top Articles
Sep 26, 2023
New Botnet Sale and Recruitment Post, US and Canada RDP Access Sale, D...
New Botnet Sale and Recruitment Post, US and Canada RDP Access Sale, Dymocks Database In this week’s dark web update, the SOCRadar Dark Web Team has revealed a series of troubling developments; ...
Learn More
Sep 25, 2023
TeamCity Authentication Bypass Flaw: CVE-2023-42793
TeamCity Authentication Bypass Flaw: CVE-2023-42793 [Update] December 14, 2023: See the subheading: “CISA Alerts on APT29 Exploiting TeamCity Vulnerability, CVE-2023-42793.” [Update] October 6, 2023:...
Learn More
Sep 25, 2023
Over 400K Buckets and 10.4B Files Are Public Due to Cloud Misconfigura...
Over 400K Buckets and 10.4B Files Are Public Due to Cloud Misconfigurations In today’s cloud-centric era, the migration of digital assets to cloud storage has become widespread, driven by the de...
Learn More
Sep 22, 2023
Critical DICOM Server Misconfigurations Lead to Exposure of 1.6M Medic...
Critical DICOM Server Misconfigurations Lead to Exposure of 1.6M Medical Records In a regular threat and vulnerability hunting activity, SOCRadar has discovered during their research that thousands of...
Learn More
Sep 21, 2023
Joint Advisory by CISA and FBI: Snatch Ransomware
Joint Advisory by CISA and FBI: Snatch Ransomware The FBI and CISA have recently issued a joint cybersecurity advisory (CSA) concerning the Snatch ransomware variant. The advisory provides comprehensi...
Learn More
Sep 20, 2023
Dark Web Profile: NoEscape Ransomware
Dark Web Profile: NoEscape Ransomware Avaddon, a notorious Ransomware-as-a-Service (RaaS) that emerged in early 2019 was known for its double-extortion tactics. It not only encrypted victims’ files bu...
Learn More
Sep 20, 2023
Dark Web Profile: USDoD
Dark Web Profile: USDoD [Update] October 17, 2024: See the subheading: “Brazilian Arrest Tied to USDoD” [Update] August 26, 2024: See the subheading: “Is USDoD’s Identity Revealed?” [Update] April 22,...
Learn More
Sep 20, 2023
Mastodon Vulnerabilities and Critical Zero-Day in TrendMicro’s Apex On...
Mastodon Vulnerabilities and Critical Zero-Day in TrendMicro’s Apex One, Fixed: CVE-2023-41179, CVE-2023-42451, CVE-2023-42452 Mastodon recently addressed two vulnerabilities, namely CVE-2023-42451 an...
Learn More
Sep 20, 2023
GitLab's Critical Security Update: What You Need to Know (CVE-2023-500...
GitLab’s Critical Security Update: What You Need to Know (CVE-2023-5009) GitLab is a widely-used DevOps platform that allows for code hosting, continuous integration, and other collaborative fea...
Learn More
Sep 19, 2023
Your Data Is Not Safe: 8Base Deanonymized
Your Data Is Not Safe: 8Base Deanonymized In the ever-evolving world of cybercrime, the 8Base ransomware group has recently come under the spotlight. Known for its victim-shaming website, th...
Learn More
Sep 19, 2023
Microsoft AI Repository Exposes 38TB of Data: A Tale in AI and Cloud S...
Microsoft AI Repository Exposes 38TB of Data: A Tale in AI and Cloud Security Wiz Research recently unveiled a startling incident involving Microsoft’s AI research team: an accidental exposure o...
Learn More
Sep 19, 2023
Remote Administration Tool Sale, Ledger Database Leak, and Dark Strom ...
Remote Administration Tool Sale, Ledger Database Leak, and Dark Strom DDoS Attack In this week’s dark web roundup, we bring you a series of concerning developments that the SOCRadar Dark Web Tea...
Learn More
Sep 18, 2023
LockBit’s New Regulations Sets Minimum For Ransom Demands
LockBit’s New Regulations Sets Minimum For Ransom Demands Recently, the notorious LockBit ransomware group has initiated a significant discussion among its affiliates regarding potential cha...
Learn More
Sep 16, 2023
Why are Threat Actors Targeting Indonesia?
Why are Threat Actors Targeting Indonesia? On September 3, Indonesia hiked fuel prices by 30%, stating that petrol and diesel prices are still low by world standards, but subsidies are unsustainable. ...
Learn More
Sep 15, 2023
MGM Resorts Hacked by BlackCat Affiliate, ‘Scattered Spider’
MGM Resorts Hacked by BlackCat Affiliate, ‘Scattered Spider’ [Update] January 31, 2025: “Preliminary Approval of $45 Million Settlement in MGM Data Breach Class Action” A cybercriminal gang employing ...
Learn More
Sep 14, 2023
Overview of TIBER-EU From Threat Intelligence Perspective
Overview of TIBER-EU From Threat Intelligence Perspective Financial institutions are crucial for the global economy. They hold trillions of dollars in assets and billions of customer records. As such,...
Learn More
Sep 14, 2023
LockBit Attack Fails, 3AM Ransomware Steps In as Plan B
LockBit Attack Fails, 3AM Ransomware Steps In as Plan B Researchers have recently identified a new strain of ransomware called 3AM. Their investigation revealed that the first known usage of this rans...
Learn More
Sep 13, 2023
Top 10 Facts About MOVEit Breach
Top 10 Facts About MOVEit Breach In the ever-evolving cybersecurity landscape, breaches have become all too common, sending shockwaves through industries and leaving organizations scrambling to recove...
Learn More
Sep 13, 2023
September 2023 Patch Tuesday by Microsoft Fixes Five Critical, Two Zer...
September 2023 Patch Tuesday by Microsoft Fixes Five Critical, Two Zero-Day Vulnerabilities [Update] September 15, 2023: See the subheading: “Proof-of-Concept (PoC) Exploit Available for CVE-2023-3814...
Learn More
Sep 12, 2023
Mother of the Threats: Threat as a Service
Mother of the Threats: Threat as a Service Anonymous Russia’s botnet service Tesla-bot announced a new malicious service model on its Telegram channel. This new type of service and concept, whic...
Learn More
