New Phishing techniques and how to identify them
Emerging phishing techniques 2021: HTML smuggling, browser-in-the-browser tricks, MFA-fatigue prompts and the detection signals defenders can rely on.
Category
Emerging Threats
Read the analysis
Ransomware and Virtual Servers
Virtualisation-aware ransomware variants: ESXi/vCenter targeting, hypervisor-level encryption impact and detection recommendations for virtualised estates.
Ursnif and Android APPs
Ursnif banking trojan extending its operation to Android: malicious APK delivery, second-stage capabilities, overlay attacks and detection considerations.
BackdoorDiplomacy — threat against Ministries of Foreign Affairs
BackdoorDiplomacy APT activity against diplomatic missions and telecom operators: tooling, infrastructure overlap with known Chinese clusters and victim profiles.
LokiBot campaign — update of 21 June 2021
LokiBot campaign of 21 June 2021: lure templates, dropper chain, exfiltration channels and IOC indicators across the latest waves.
Italian targets gain traction in criminal forums
Underground criminal-forum chatter shows growing interest in Italian organisations: access listings, language preferences and targeting trends.
COVID-19: Italian vaccination archive sold
Italian COVID-19 vaccination data offered for sale on underground markets: data scope, source hypotheses and implications for affected citizens.
Avaddon shuts down — decryption keys released publicly
Avaddon ransomware operation closure with public release of decryption keys: recovery scope for past victims and post-shutdown affiliate movement signals.
Protected: Energy sector: theft of CEO private data
There is no excerpt because this is a protected post.
