Malware

BADCANDY webshell spread via vulnerable Cisco IOS XE device targeting Threat actors were reported by the Australian Signals Directorate to have launched attacks exploiting the maximum severity Cisco IOS XE vulnerability, tracked as CVE-2023-20198, to deliver the BADCANDY webshell, according to Security Affairs.

Suspected state-backed threat operation CL-STA-1009 has spread the new Airstalk malware in what is believed to be a supply chain attack campaign against the business process outsourcing sector, The Hacker News reports.

Lytvynenko, 43, was charged with deploying Conti ransomware that extorted over $500,000 from US victims.

Teams need to build resilience into response efforts, improve detection and response, and update threat awareness.

Developer alleged to distribute AdaptixC2 to malicious actors via a Russian-language Telegram channel.

The ransomware group spoofs services like Microsoft Teams and PuTTy to spread its loader.

Every organization faces its own challenges, but all enterprises require network visibility.