EHA
Return of Genesis Market: Hackers Exploited Node.js and EV code signing

Genesis Market Technique: Hackers Exploited Node.js and EV Certificates

In the labyrinthine landscape of cyber threats, the Trend Micro Managed XDR team has uncovered a malevolent symphony echoing the tactics employed by the infamous Genesis Market.  Trend Micro Managed XDR, or Extended Detection and...
Nation-state Hackers Exploiting Confluence Zero-day Vulnerability

Nation-state Hackers Exploiting Confluence Zero-day Vulnerability

Microsoft has detected the nation-state threat actor Storm-0062, also known as DarkShadow or Oro0lxy, exploiting CVE-2023-22515 in the wild since September 14, 2023.  The vulnerability was publicly disclosed on October 4, 2023, and this CVE-2023-22515...
Multiple APT Hacker Groups Exploiting FortiOS SSL-VPN & Manage ServiceDesk Plus Flaws

Multiple APT Hackers Exploiting Fortinet & ManageEngine Vulnerability

FortiOS SSL-VPN safeguards against data breaches, while ManageEngine ServiceDesk Plus offers an integrated help desk and asset management for IT resources. At an Aeronautical Sector organization, in early January 2023, the following security entities discovered...
Microsoft Blocks the POLONIUM Hackers From Abusing OneDrive To Exfiltrate the Data 

Microsoft Blocks the POLONIUM Hackers From Abusing OneDrive To Exfiltrate the Data 

Recently Microsoft has detected and blocked attacks on OneDrive from a group of hackers called POLONIUM who are operating from Lebanon.  While attacking and compromising Israelian organizations, they sought to exfiltrate data from the OneDrive...
Cloudflare Server Hacked Using Leaked Access Token in Okta Breach

Cloudflare’s Server Hacked Using Leaked Access Token in Okta Breach

Cloudflare discovered a threat actor on the self-hosted Atlassian server on November 23, 2023. The attack was launched with the use of one stolen access token and three compromised service account credentials that were neglected...
Sophisticated Earth Estries Group Hack Government Agencies and Tech Companies

Sophisticated Earth Estries Group Hack Government Agencies and Tech Companies

A new sophisticated cyber espionage group named Earth Estries, which overlaps notorious threat group FamousSparrow, was unveiled. The group has been active since 2020 and targets multiple government and technology organizations utilizing hacking tools and...
Hackers’ Leaksmas Darkweb Event Exposes Massive Hacked Data

Hackers’ Leaksmas Darkweb Event Exposes Massive Hacked Data

As carols resonated in the air and families convened, the cyber underworld ushered in a chilling twist to Christmas – 'Leaksmas,' a season marked by rampant data dumps targeting individuals and organizations worldwide.  Resecurity, a...
Former Owner of T-Mobile Retail Store Accessed

Former Owner of T-Mobile Retail Store Accessed Internal Systems to Unlock and Unblock Cell...

There has been an enormous breach within the internal system of T-Mobile that has caused a lot of damage to the company. T-Mobile's internal systems were illegally accessed by a former owner of a...
New Zealand Parliamentary Network Hacked by Chinese Hackers

New Zealand Parliamentary Network Hacked by Chinese Hackers

New Zealand has joined the United Kingdom in strongly condemning the People’s Republic of China (PRC) for its state-backed cyber activities, which have recently targeted democratic institutions, including the UK's Electoral Commission and Members...
Hackers Using Money-Making Scripts to Deliver Multiple Malware

Hackers Using Money-Making Scripts to Deliver Multiple Malware

The FBI warned about attacks on government and non-profit organizations in April, which involved deploying multiple malware strains on victim devices.  Besides this, the attackers aim to achieve the following things:-  Mine resources Steal data Establish backdoor access...

Managed WAF

Website

Latest News