The Good, the Bad and the Ugly in Cybersecurity

A naukri.com initiative

New

The Good, ...

Sentinelone

201

Image Credit: Sentinelone

Global authorities have disrupted a major botnet that operated since 2004, generating over $46 million from illegal residential proxy services.
In Moldova, a suspect linked to the DoppelPaymer ransomware attack on Dutch organizations has been arrested and faces extradition.
Liridon Masurica, involved in a cybercrime marketplace, has been extradited to the U.S. and faces charges for selling stolen data.
A malicious NPM package disguised as an OS information utility has been found to deliver multi-stage malware using hidden Unicode characters.
The malware utilizes Google Calendar and invisible characters to obscure its malicious activities and command and control communication.
The campaign targeting Kurdish military by Türkiye-based Marbled Dust involves exploiting a zero-day vulnerability in Output Messenger.
Marbled Dust deploys backdoors to exfiltrate data and issue commands after gaining access through DNS hijacking or typosquatted domains.
The use of a zero-day exploit by Marbled Dust reflects an increase in technical capabilities and a shift towards targeting higher-value entities.
Developers are reminded to thoroughly vet third-party packages to prevent falling victim to increasingly sophisticated attacks in the open-source ecosystem.
These recent cybersecurity events highlight the ongoing battle between cybercriminals and authorities, showcasing the evolving landscape of cyber threats.

Read Full Article

12 Likes

For uninterrupted reading, download the app