Over 70 organizations across all business verticals, most of which are in the U.S., have been subjected to a phishing campaign exploiting Microsoft 365's Direct Send feature for stealth that has been underway since last month, reports BleepingComputer.
Malicious actors have been creating signed remote access through ConnectWise ScreenConnect installer abuse as part of an Authenticode stuffing attack, reports BleepingComputer.
Threat operation TAG-140, which has been associated with Pakistan-linked hacking groups Transparent Tribe and SideCopy, has deployed the significantly improved DRAT V2 remote access trojan in a social engineering attack campaign with ClickFix tactics aimed at Indian defense organizations, Cyber Security News reports.
Hardware cryptocurrency wallet Trezor had its automated support system exploited to facilitate cryptocurrency theft as part of a new phishing campaign, according to BleepingComputer.
BleepingComputer reports that threat actors could leverage Windows File Explorer to execute malicious commands using the new ClickFix social engineering attack technique dubbed "FileFix".
SonicWall has warned of ongoing intrusions leveraging a trojanized installer of its NetExtender SSL VPN application to pilfer VPN credentials, The Register reports.
Multiple U.S. states including California, Florida, Georgia, New Jersey, New York, Pennsylvania, and Texas had their respective Departments of Motor Vehicles spoofed as part of a suspected Chinese phishing campaign discovered last month, according to Hackread.
Widely used cryptocurrency price tracking site CoinMarketCap had $43,266 worth of cryptocurrency pilfered from 110 victims following a Friday attack that involved the Inferno Drainer crypto-draining tool, according to Hackread.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
