ShadowSyndicate, a newly identified cybercrime group, has been active since July 2022 and is associated with various ransomware families, utilizing off-the-shelf post-exploitation tools and loaders, with Cobalt Strike being particularly prominent in their operations.
Proofpoint has discovered ZenRAT, a dangerous modular remote access trojan (RAT) that specifically targets Windows users and disguises itself as a counterfeit Bitwarden installation package, posing a significant cybersecurity threat by stealing information and redirecting non-Windows users to legitimate websites to avoid detection.
Microsoft has introduced passkeys in Windows 11, providing users with a secure and convenient way to log in to websites and applications without the need for usernames and passwords, offering enhanced security measures against phishing attacks and compatibility with multiple browsers.
EvilBamboo, a persistent threat actor believed to be operated by the Chinese state, has been conducting a cyber-espionage campaign targeting Tibetan, Uyghur, and Taiwanese individuals and organizations for over five years, utilizing customized Android and iOS malware.
The National Student Clearinghouse has reported a data breach caused by a cyberattack from the Cl0p ransomware gang, impacting 890 schools and exposing personally identifiable information of students.
Arika ransomware, also known as Akira ransomware, poses a significant threat by targeting Linux servers and Windows systems, successfully attacking 110 victims, including high-profile organizations like Intertek, and demanding millions of dollars in ransom.
