Scattered Spider and CryptoChameleon-linked threat operation PoisonSeed has facilitated clandestine credential exfiltration with its phishing kit, which has been targeting leading customer relationship management and email service providers since April, GBHackers News reports.
Hackread reports that the U.S. has gained custody of Ghanaians Isaac Oduro Boateng, Inusah Ahmed, and Derrick Van Yeboah, who were allegedly involved in an extensive cyber fraud scheme that has led to more than $100 million in losses.
North Korean state-backed advanced persistent threat operation Kimsuky had an 8.9 GB data trove stolen and exposed by hackers 'Saber' and 'cyb0rg' in retaliation for the APT's wrongful attacks that were advanced by "political agendas" and "financial greed", reports BleepingComputer.
The Picus Security report indicates a significant escalation in password cracking incidents within enterprise environments, with a notable increase compared to previous years.
All that phishing training you have to go through barely moves the needle in making your organization safer, two researchers said at the Black Hat security conference.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
