Risk Assessments/Management

Threat actors have been deploying phishing attacks with the more_eggs malware aimed at corporate hiring managers, according to The Hacker News.

LemonDuck botnet operators have launched an ongoing widespread cryptomining campaign targeted at Docker APIs on Linux servers.

The insights from HHS can support provider organizations in light of the Lapsus$ ransomware group's penchant for preying on healthcare insiders.

Chainalysis found $8.6 billion in cryptocurrency transferred from illicit wallets to decentralized finance (DeFi) services in 2021.

Microsoft Exchange servers unpatched to ProxyShell security vulnerabilities are being attacked by an affiliate of the Hive ransomware group to facilitate the distribution of the Cobalt Strike beacon and other backdoors, reports BleepingComputer.

The Hacker News reports that cybercriminals could exploit an already addressed security flaw in the Snort intrusion detection and prevention system to prompt a denial-of-service condition.

Threat actors could abuse serious vulnerabilities in AWS hot patches for Apache Log4j flaws to elevate privileges and escape containers, reports SecurityWeek.

Eighty-nine percent of businesses reported at least one successful email breach during the past year, while email breach prevalence has increased by nearly twofold since 2019, most of which stemmed from Microsoft 365 phishing attacks, according to Threatpost.