ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to ...
ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to Compromise AI Workloads Globally Since September 5, 2023, a sophisticated cyber threat named the ‘ShadowRay’ campaign has targeted...
Threat Actor Profile: Molerats
Threat Actor Profile: Molerats Much like mole rats create an intricate network of underground tunnels, the cyber threat group known as Molerats has expertly burrowed its way through the digital defens...
Could Your Email be Hacked? 2024 Analysis of Top Email Providers in St...
Could Your Email be Hacked? 2024 Analysis of Top Email Providers in Stealer Logs With the ever-present concern surrounding the security of email addresses and the accounts linked to them, there arises...
Dark Web Profile: Red Ransomware
Dark Web Profile: Red Ransomware On April 3, 2024, a newly discovered ransomware group surfaced as Senior Threat Analyst Rakesh Krishnan shed light. Known as Red CryptoApp, this group began its operat...
Beyond Phishing: Top 10 Data Breach Sets
Beyond Phishing: Top 10 Data Breach Sets In recent years, there has been a significant increase in the amount of sensitive data available, making cybercrime more of a risk even for people who aren’t v...
APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spool...
APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spooler Vulnerability, CVE-2022-38028 Microsoft recently shed light on a campaign orchestrated by the Russian-based threat actor Forest...
Major Data Leaks from Honda Vietnam, US Airports, and Chinese Huawei/i...
Major Data Leaks from Honda Vietnam, US Airports, and Chinese Huawei/iPhone Users The SOCRadar Dark Web Team recently discovered a leaked database containing sensitive customer information from Honda ...
Deciphering Cyber Shadows: Insights into China and Russia’s Cybercrime...
Deciphering Cyber Shadows: Insights into China and Russia’s Cybercrime Ecosystems In an era where cyber threats loom large over global security, understanding the operational dynamics within notorious...
Password Dictionary Analysis: Ultimate Wordlist of USA Passwords
Password Dictionary Analysis: Ultimate Wordlist of USA Passwords In the digital age, where our lives are increasingly connected with technology, the importance of securing our online accounts cannot b...
Dark Peep #13: Money Laundering 1M1
Dark Peep #13: Money Laundering 1M1 Welcome to Dark Peep #13: Money Laundering 1M1, where the cyber landscape mirrors the shifting sands of the dark web, guided by the astute observations of SOCRadar ...
Biggest Cybersecurity Risks SMEs Face and CTI as a Solution
Biggest Cybersecurity Risks SMEs Face and CTI as a Solution Small and Medium Enterprises (SMEs) can be considered the engine of their country’s economies. Their efforts result in economic growth. The ...
Dark Web Profile: Akira Ransomware
Dark Web Profile: Akira Ransomware Since its discovery in early 2023, Akira ransomware has evolved from a seemingly ordinary addition to the ransomware landscape to a significant threat affecting a wi...
In the Crosshairs: Top 10 Threat Actors Targeting the USA
In the Crosshairs: Top 10 Threat Actors Targeting the USA As the digital landscape continues to evolve, the United States finds itself at the forefront of emerging cybersecurity challenges. With its c...
Rise of Malicious AI Tools: A Case Study with HackerGPT
Rise of Malicious AI Tools: A Case Study with HackerGPT Artificial intelligence, particularly generative models, has become increasingly prevalent over the past few years. Its impact on the workforce ...
OpenMetadata Vulnerabilities Allow Attackers to Cryptomine in Kubernet...
OpenMetadata Vulnerabilities Allow Attackers to Cryptomine in Kubernetes Environments Recent findings from a Microsoft security blog reveal that attackers exploit newly discovered critical vulnerabili...
Compliance Through Vigilance; SOCRadar XTI for Compliant Organizations
Compliance Through Vigilance; SOCRadar XTI for Compliant Organizations We are all aware that reactive measures are insufficient in this age of cyber threats; businesses must take proactive steps to ef...
CVE-2024-21006 in Oracle WebLogic Server – Oracle’s April 2024 Update ...
CVE-2024-21006 in Oracle WebLogic Server – Oracle’s April 2024 Update Brings 441 New Security Patches Oracle has released its Critical Patch Update advisory for April 2024, which addresses vulnerabili...
Committing a Sin, OpenJS Foundation and XZ Utils Incidents: Lessons in...
Committing a Sin, OpenJS Foundation and XZ Utils Incidents: Lessons in Open Source Security Recent events have brought to light critical issues related to cybersecurity threats and social engineering ...
Ivanti Avalanche Received an Update for Over Two Dozen Vulnerabilities...
Ivanti Avalanche Received an Update for Over Two Dozen Vulnerabilities (CVE-2024-24996, CVE-2024-29204…) Ivanti has recently issued security updates to address multiple vulnerabilities in Avalanche. T...
Dark Web Monitoring with Open-Source Tools and Services
Dark Web Monitoring with Open-Source Tools and Services The dark web, intentionally hidden on the internet, is accessible only through specialized browsers or technologies. Defenders monitor it for cl...