InfoSec News 20250605

  • Publicado: Qui, 05/06/2025 - 16:20

Top News

  • DCRat Targets Latin American Users to Steal Banking Credentials

"IBM X-Force has uncovered a series of targeted email campaigns orchestrated by Hive0131, a financially motivated threat group likely originating from South America."

Link

TLP1 : Green

  • Microsoft unveils free EU cybersecurity program for governments

"Microsoft announced in Berlin today a new European Security Program that promises to bolster cybersecurity for European governments."

Link

TLP1 : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

  • Ukraine's military intelligence claims cyberattack on Russian strategic bomber maker

"Ukraine's military intelligence agency (HUR) said it hacked into the internal systems of Russia’s major state-owned aircraft manufacturer Tupolev, days after Ukraine launched surprise drone assaults on Russian air bases."

Link

TLP1 : Green

  • ViLE gang members sentenced for DEA portal breach, extortion

"Two members of a group of cybercriminals named ViLE were sentenced this week for hacking into a federal law enforcement web portal in an extortion scheme."

Link

TLP1 : Green

  • US offers $10M for tips on state hackers tied to RedLine malware

"The U.S. Department of State has announced a reward of up to $10 million for any information on government-sponsored hackers with ties to the RedLine infostealer malware operation and its suspected creator, Russian national Maxim Alexandrovich Rudometov."

Link

TLP1 : Green

Breaches: Data Breaches and Hacks

  • Interlock ransomware claims Kettering Health breach, leaks stolen data

"The Interlock ransomware gang has claimed a recent cyberattack on the Kettering Health healthcare network and leaked data allegedly stolen from breached systems."

Link

TLP1 : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

  • Cisco warns of ISE and CCP flaws with public exploit code

"Cisco has released patches to address three vulnerabilities with public exploit code in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP) solutions."

Link

TLP1 : Green

  • HPE fixed multiple flaws in its StoreOnce software

"Hewlett Packard Enterprise (HPE) addressed multiple flaws in its StoreOnce data backup and deduplication solution."

Link

TLP1 : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

  • This $30 bundle helps prepare for industry-leading IT certifications

"Tech certifications can open doors to higher-paying jobs, but preparing for them can be overwhelming if you’re starting from scratch."

Link

TLP1 : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

  • The Bitter End: Unraveling Eight Years of Espionage Antics

"TA397 (Bitter) is an espionage group with a long history of targeting South Asian entities. While the group is frequently attributed to India (non-publicly), the reasoning behind this is not clearly documented. In this blog we share evidence showing TA397 to be an India-aligned threat actor and release previously undisclosed evidence of the group’s targeting outside of Asia."

Link

TLP1 : Green

 

 

1Traffic Light Protocol (TLP) [1] for information sharing:

 

 

  • Red:Not for disclosure, restricted to participants only.
  • Amber: Limited disclosure, restricted to participants organizations.
  • Green: Limited disclosure, restricted to the community.

 

[1]https://www.first.org/tlp

Infosec News