Top News

• Now BlueSky hit with crypto scams as it crosses 20 million users

"As many more users are flocking to BlueSky from social media platforms like X/Twitter, so are threat actors."

Link

TLP¹ : Green

Top News

• Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks

"Ransomware gangs are increasingly targeting weekends and holidays, when cybersecurity teams are typically less staffed, according to a new report from Semperis."

Link

TLP¹ : Green

Top News

• Spotify abused to promote pirated software and game cheats

"Spotify playlists and podcasts are being abused to push pirated software, game cheat codes, spam links, and "warez" sites."

Link

TLP¹ : Green

Top News

• SafePay Ransomware: A New Threat with Sophisticated Techniques

"In October 2024, Huntress analysts uncovered a previously unreported ransomware strain, dubbed SafePay, deployed across two distinct incidents. This ransomware has unique characteristics, including the use of .safepay as the encrypted file extension and a ransom note titled readme_safepay.txt."

Link

Top News

• 4,000,000 WordPress Sites Using Really Simple Security Free and Pro Versions Affected by Critical Authentication Bypass Vulnerability

"This is one of the more serious vulnerabilities that we have reported on in our 12 year history as a security provider for WordPress. This vulnerability affects Really Simple Security, formerly known as Really Simple SSL, installed on over 4 million websites, and allows an attacker to remotely gain full administrative access to a site running the plugin."

Top News

• Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails

"A newly patched security flaw impacting Windows NT LAN Manager (NTLM) was exploited as a zero-day by a suspected Russia-linked actor as part of cyber attacks targeting Ukraine."

Link

TLP¹ : Green

Top News

• New Node.js-based Wish Stealer Targets Discord, Browsers, and Cryptocurrency Wallets

"CYFIRMA recently discovered a new malware called “Wish Stealer” that targets Windows users by stealing sensitive information from various sources like Discord, web browsers, cryptocurrency wallets, and social media accounts."

Link

Top News

• VMware makes Workstation and Fusion free for everyone

"​VMware has announced that its VMware Fusion and VMware Workstation desktop hypervisors are now free to everyone for commercial, educational, and personal use."

Link

TLP¹ : Green

Top News

• Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond

"Wiz Research looks at phishing tactics, along with how to trace and investigate these campaigns."

Link

TLP¹ : Green

Top News

• Unmasking VEILDrive: Threat Actors Exploit Microsoft Services for C2

"Hunters’ Team AXON has identified and is currently monitoring an ongoing threat campaign, dubbed “VEILDrive”"

Link

TLP¹ : Green