Daily Cyber Brief

Iran-linked Charming Kitten increases operations and TTPs, Seven smuggled US military tech for Moscow, TikTok could be banned in the US, and Siemens addresses vulnerabilities on patch Tuesday...

Cybersecurity

Iran-linked Charming Kitten espionage gang bares claws to pollies, power orgs

An Iranian cyber espionage gang with ties to the Islamic Revolutionary Guard Corps has learned new methods and phishing techniques, and aimed them at a wider set of targets – including politicians, government officials, critical infrastructure and medical researchers…

Seven smuggled US military tech for Moscow, say Feds

The US Department of Justice unsealed a 16-count indictment today accusing five Russians, an American citizen, and a lawful permanent US resident of smuggling export-controlled electronics and military ammunition out of the United States for the Russian government…

Malicious Microsoft-signed Windows drivers wielded in cyberattacks

Microsoft says it has suspended several third-party developer accounts that submitted malicious Windows drivers for the IT giant to digitally sign so that the code could be used in cyberattacks. In tandem with its Patch Tuesday rollout this week, the tech goliath also…

FBI seized domains linked to 48 DDoS-for-hire service platforms

The US Department of Justice has seized 48 Internet domains and charged six suspects for their involvement in running ‘Booter’ or ‘Stresser’ platforms that allow anyone to easily conduct distributed denial of service attacks. Booters are online platforms allowing threat…

TikTok could be banned from America, thanks to proposed bipartisan bill

The US government's crackdown on TikTok continues, with the latest salvo being a bipartisan bill that would outright ban the popular social media app from doing business in the country. TikTok is owned by Beijing-based ByteDance, which has led it to become a battleground for…

Apple security update fixes new iOS zero-day used to hack iPhones

In security updates released today, Apple has fixed the tenth zero-day vulnerability since the start of the year, with this latest one actively used in attacks against iPhones. The vulnerability was disclosed in security bulletins released today for iOS/iPadOS 15.7.2, Safari…

AgentTesla Remains Most Prolific Malware in November, Emotet and Qbot Grow

Emotet has returned as one of the most prevalent malware in the wild after a quiet summer. Additionally, the Trojan Qbot made the list for the first time since 2021, and the Raspberry Robin worm has had a notable influx in use. These are some of the key findings from Check…

The Dark Web is Getting Darker - Ransomware Thrives on Illegal Markets

The dark web is getting darker as cybercrime gangs increasingly shop their malware, phishing, and ransomware tools on illegal cybercrime markets. In April 2022, the U.S. Treasury sanctioned the Russia-based Hydra Market. Hydra, the world’s largest dark web market…

Analysis Shows Attackers Favor PowerShell, File Obfuscation

An analysis of threats encountered by four organizations has identified the most common techniques used by attackers to compromise systems, infiltrate networks, and steal data, according to data analysts at Splunk SURGe, which published details of the research on Dec…

ICS Patch Tuesday: Siemens Fixes 80 OpenSSL, OpenSSH Flaws in Switches

As usual, Siemens released far more advisories and addressed far more vulnerabilities. Specifically, the company released 20 new advisories addressing roughly 140 security holes. One of the advisories informs customers about patches for more than 80 OpenSSL…

Daily Cyber Brief

Iran-linked Charming Kitten increases operations and TTPs, Seven smuggled US military tech for Moscow, TikTok could be banned in the US, and Siemens addresses vulnerabilities on patch Tuesday...

Cybersecurity

Join the conversation

Overt Operator