Europol coordinates global action against criminal abuse of Cobalt Strike


Law enforcement has teamed up with the private sector to fight against the abuse of a legitimate security tool by criminals who were using it to infiltrate victims’ IT systems.

Older, unlicensed versions of the Cobalt Strike red teaming tool were targeted during a week of action coordinated from Europol’s headquarters between 24 and 28 June. Throughout the week, law enforcement flagged known IP addresses associated with criminal activity, along with a range of domain names used by criminal groups, for online service providers to disable unlicensed versions of the tool.

Read more…
Source: Europol


Sign up for our Newsletter


Related:

  • Northern Ireland: Police Ombudsman sorry for ‘distressing’ data leak as investigation is launched

    September 1, 2024

    An investigation has been launched after a data breach led to the details of current and former Police Ombudsman staff members being accidently released. The Police Ombudsman (PONI) has apologised for the data leak incident involving 160 current and former staff. A document containing some of their personal details was “inadvertently released” to 22 people who ...

  • Chennai bomb threat mails: Serious setback for police as Microsoft refuses to share vital information

    August 30, 2024

    Chennai cybercrime police has faced a serious setback in its investigations into the more than three dozen hoax bomb emails sent to schools, colleges, and the airport, ToI reported on August 30. Microsoft has refused to share crucial information regarding the mails, the report by ToI’s A Selvaraj said. These emails, the latest of which coincided ...

  • Interpol busts Black Axe global crime network, arrest over 300

    August 28, 2024

    The International Criminal Police Organisation (INTERPOL) Police units had in a coordinated action in 21 countries between April and July 2024 arrested over 300 people with links to Nigerian criminal group Black Axe and other affiliated groups. In a statement, Interpol said operation “Operation Jackal III” led to hundreds of arrests, the seizure of assets worth ...

  • Hunters International ransomware gang threatens to leak US Marshals data

    August 27, 2024

    The Hunters International ransomware group is threatening to leak what it claims to be 386 GB of data from the U.S. Marshals Service (USMS), more than a year after the federal law enforcement agency suffered a major ransomware attack. The gang claims the data, comprising more than 327,000 files, includes “Top Secret” documents, gang files, information ...

  • Telegram messaging app CEO Pavel Durov arrested in France

    August 25, 2024

    Pavel Durov, the founder and CEO of the Telegram messaging app, has been arrested at Bourget airport outside Paris for alleged offences related to his messaging app, French media reports. Local sources said on Sunday that Durov, 39, had been travelling on his private jet from Azerbaijan and that a French arrest warrant targeted him as ...

  • Pakistan: FIA files cyberterrorism case against suspect for allegedly sharing fake news that incited UK riots

    August 21, 2024

    The Federal Investigation Agency (FIA) has arrested and booked a Lahore resident for allegedly sharing fake information that incited the recent riots across the UK, it emerged on Wednesday. More than a week after the kingdom witnessed widespread riots in the aftermath of the fatal stabbing of three young girls in Southport, law enforcement agencies began ...