Attempted phishing attacks have been launched by Russian state-sponsored hacking group Nobelium, also known as APT29 and Cozy Bear, against government agencies and diplomatic organizations across the European Union, reports The Record, a news site by cybersecurity firm Recorded Future.
Several high-volume phishing campaigns involving millions of emails have been conducted with the use of an open-source adversary-in-the-middle phishing kit developed by the DEV-1101 threat operation, The Hacker News reports.
BleepingComputer reports that threat actors have been increasingly leveraging Silicon Valley Bank in suspicious domains, phishing campaigns, and business email compromise attacks since the collapse of the U.S. commercial bank on March 10 in an effort to facilitate money and account data theft, as well as malware infections.
The potential total loss from cybercrime in 2022 increased to over $10.2 billion from $6.9 billion in 2021, despite a 5% decrease in the number of complaints reported to the FBI.
Most digital forensics and incident response incidents involved data exfiltration or intellectual property theft, followed by business email compromise and employee misconduct, TechRepublic reports.
Numerous Colombian organizations, including those in the health, law enforcement, and financial segments, have been targeted by a spear-phishing campaign by Blind Eagle, also known as APT-C-36, according to The Hacker News.
The Cybersecurirty and Infrastructure Security Agency's three-month red team operation was not discovered by a major critical infrastructure organization last year, reports The Record, a news site by cybersecurity firm Recorded Future.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
