top of page
Untitled design.png

Weekly INK

Each week we compile an advisory on the latest threats, trends and newsworthy topics from the cyber security industry affecting small and medium enterprises. Join our subscribers below and help us prevent cybersecurity breaches.

watermark4.png

Issue #84 - February 12, 2024

DoJ Breaks Russian Military Botnet in Fancy Bear Takedown

Source: Dark Reading

The Department of Justice (DoJ) has disrupted a botnet used by Russian military intelligence for widespread cyber espionage. The network was made up of hundreds of individual small office/home office (SOHO) routers that the Russian Military Unit 26165 (better known as Fancy Bear, APT 28, Sofacy Group, Forest Blizzard, Pawn Storm, and Sednit) was able to use to launch cybercrimes, including spear-phishing, credential harvesting, and more, according to the DoJ.




RansomHouse gang automates VMware ESXi attacks with new MrAgent tool

Source: Bleeping Computer

The RansomHouse ransomware operation has created a new tool named 'MrAgent' that automates the deployment of its data encrypter across multiple VMware ESXi hypervisors. RansomHouse is a ransomware-as-a-service (RaaS) operation that emerged in December 2021 and is using double extortion tactics. In May 2022, the operation set up a dedicated victim extortion page on the dark web.




Hackers Try to Extort $50 From Child; 2 Million More at Risk

Source: Data Breach Today

A hack at Integris Health in November affected an estimated 2.4 million people, but the fallout from the data breach didn't end there. At least one child, M.J. - and his Oklahoma mom Teresa Johnston - said cybercriminals used the stolen data to try to extort money from them.




Water Hydra’s Zero-Day Attack Chain Targets Financial Traders

Source: Infosecurity Magazine

The Trend Micro Zero Day Initiative (ZDI) has recently unearthed a critical vulnerability, identified as CVE-2024-21412, which they’ve dubbed ZDI-CAN-23100. The flaw was reported to Microsoft as part of a Microsoft Defender SmartScreen bypass utilized in a complex zero-day attack chain orchestrated by the APT group known as Water Hydra (AKA DarkCasino). Their targets were financial market traders.




Hack at Software Services Firm Affects 57,000 BoA Customers

Source: Info Risk Today

Bank of America is notifying more than 57,000 customers that their Social Security numbers and other personal information was potentially compromised in a hacking incident last November at insurance software firm InfoSys McCamish Systems.



125 views

Help us Prevent Breaches.

We will never share or sell your information. Unsubscribe at any time.

Email: *

Received.

bottom of page