Latest articles from SOCRadar
The RansomedVC group has announced that it successfully breached Sony, the renowned Japanese multinational electronics giant. The group claims to have infiltrated all of Sony's systems in their victim listing, posted both on its clearnet… Continue Reading
In this week's dark web update, the SOCRadar Dark Web Team has revealed a series of troubling developments; among their recent findings, databases from a Brazilian travel company and Dymocks have come to light. Additionally,… Continue Reading
[Update] October 6, 2023: A PoC exploit for the TeamCity vulnerability has surfaced. Further details are in the blog post. In recent cyber news, a critical security flaw has been unearthed in JetBrains TeamCity. With… Continue Reading
In today's cloud-centric era, the migration of digital assets to cloud storage has become widespread, driven by the demand for high availability and performance. However, this transition has not been without its challenges. One significant… Continue Reading
In a regular threat and vulnerability hunting activity, SOCRadar has discovered during their research that thousands of DICOM servers were exposed on the internet due to misconfigurations, resulting in the exposure of patient data for… Continue Reading
The FBI and CISA have recently issued a joint cybersecurity advisory (CSA) concerning the Snatch ransomware variant. The advisory provides comprehensive insights into Snatch ransomware operations, encompassing its Indicators of Compromise (IoCs) and Tactics, Techniques,… Continue Reading
Avaddon, a notorious Ransomware-as-a-Service (RaaS) that emerged in early 2019 was known for its double-extortion tactics. It not only encrypted victims' files but also threatened to release stolen data publicly. Avaddon's modus operandi involved targeting… Continue Reading
[Update] November 7, 2023: See the subheading: "UsDoD Continues Ambitious Claims; Now Its LinkedIn’s Turn." Emerging from the shadows of the cyber realm, "USDoD" first caught attention by exposing the data of 80,000 InfraGard members,… Continue Reading
Mastodon recently addressed two vulnerabilities, namely CVE-2023-42451 and CVE-2023-42452. In addition, a zero-day vulnerability, identified as CVE-2023-41179, was promptly resolved in TrendMicro's Endpoint Security product, Apex One. Critical Zero-Day in TrendMicro Apex One: CVE-2023-41179 The… Continue Reading
GitLab is a widely-used DevOps platform that allows for code hosting, continuous integration, and other collaborative features for both Community and Enterprise users. A new critical security release has just been rolled out for GitLab… Continue Reading
In the ever-evolving world of cybercrime, the 8Base ransomware group has recently come under the spotlight. Known for its victim-shaming website, this group inadvertently revealed more than they probably intended. This article delves into the unexpected information… Continue Reading
Wiz Research recently unveiled a startling incident involving Microsoft's AI research team: an accidental exposure of 38 terabytes of sensitive data. This case brings forth essential questions and lessons about data security, especially when operating… Continue Reading
In this week's dark web roundup, we bring you a series of concerning developments that the SOCRadar Dark Web Team has flagged. From the sale of sophisticated remote administration tools to a substantial database leak… Continue Reading
Recently, the notorious LockBit ransomware group has initiated a significant discussion among its affiliates regarding potential changes to their ransom payment policies. The group has expressed growing frustration with ransomware negotiators and their handling of payment demands. Currently,… Continue Reading
On September 3, Indonesia hiked fuel prices by 30%, stating that petrol and diesel prices are still low by world standards, but subsidies are unsustainable. On the other hand, in the background of political decisions… Continue Reading
A cybercriminal gang employing a combination of impersonation and malware is the prime suspect behind the cyberattack that crippled the operations of MGM Resorts. MGM Resorts is a hospitality giant with numerous hotels and casinos… Continue Reading
Financial institutions are crucial for the global economy. They hold trillions of dollars in assets and billions of customer records. As such, they are one of the prime targets for cyberattacks. According to Statista, in… Continue Reading
Researchers have recently identified a new strain of ransomware called 3AM. Their investigation revealed that the first known usage of this ransomware occurred when threat actors substituted it for LockBit ransomware in a failed attack.… Continue Reading
In the ever-evolving cybersecurity landscape, breaches have become all too common, sending shockwaves through industries and leaving organizations scrambling to recover. One such significant breach that has recently dominated headlines is the MOVEit breach. MOVEit,… Continue Reading
[Update] September 15, 2023: See the subheading: “Proof-of-Concept (PoC) Exploit Available for CVE-2023-38146 (ThemeBleed).” Microsoft's Patch Tuesday for September 2023 has been released, addressing 59 security vulnerabilities. The update encompasses five critical vulnerabilities as well… Continue Reading
