VMware vCenter vulnerability
VMware vCenter critical vulnerability: unauthenticated RCE primitives, exposure metrics, exploitation evidence and remediation steps for affected estates.
Category
Emerging Threats
Read the analysis
Ursnif/Cutwail Malware — June 2021
Ursnif/Cutwail malspam infrastructure update for June 2021: botnet-driven distribution, lure rotation and host indicators across affected estates.
Business Ransomware: ongoing reorganisation
Ransomware ecosystem reorganisation following law-enforcement pressure: rebrandings, splinter groups, affiliate movement and intelligence priorities for defenders.
Protected: AnyDesk Malvertising — malware for system access
There is no excerpt because this is a protected post.
Protected: Cyber Threat Intelligence: usefulness in a simulated case
There is no excerpt because this is a protected post.
Protected: DarkSide — Infrastructure analysis
There is no excerpt because this is a protected post.
Protected: DarkSide — The group and its evolution
There is no excerpt because this is a protected post.
Agent Tesla — campaign of 20 May 2021
Agent Tesla campaign of 20 May 2021: spearphishing templates, dropper chain, exfiltration channels and host-level indicators for endpoint detection.
Selling access to corporate virtualisation servers
Initial access brokers offering compromised hypervisors (VMware ESXi, Hyper-V) on underground markets: pricing trends, victim profiles and downstream ransomware risk.
