News – March 2023


  • DoppelPaymer ransomware suspects cuffed, alleged ringleaders escape

    March 6, 2023

    German and Ukrainian cops have arrested suspected members of the DoppelPaymer ransomware crew and issued warrants for three other “masterminds” behind the global operation that extorted tens of millions of dollars and may have led to the death of a hospital patient. The criminal gang, also known as Indrik Spider, Double Spider and Grief, used double-extortion ...

  • Germany and Ukraine hit two high-value targets

    March 6, 2023

    With the help of the FBI, German and Ukrainian police last week searched the properties of two suspected “core members” of a global cybercrime gang that has cost US victims tens of millions of dollars, European officials said Monday. German police officers raided a German citizen’s house, while Ukrainian police searched properties in the capital Kyiv ...

  • Cyber Security & Cloud Congress Networking Party to be held at Levi’s Stadium!

    March 3, 2023

    Santa Clara, California: – The Cyber Security & Cloud Congress North America (17-18th May) is excited to announce that the venue for the official event networking party will be held at the Levi’s Stadium, Santa Clara. NETWORKING PARTY DETAILS The party will take place on the evening of the 17th of May, following the first day of the ...

  • Spike in LokiBot Activity During Final Week of 2022

    March 3, 2023

    Unit 42 researchers have uncovered a malware distribution campaign that is delivering the LokiBot information stealer via business email compromise (BEC) phishing emails. This malware is designed to steal sensitive information from victims’ systems, such as passwords and banking information, as well as other sensitive data. In this blog, Unit 42 researchers will explain how attackers used ...

  • Managed XDR Exposes Spear-Phishing Campaign Targeting Hospitality Industry Using RedLine Stealer

    March 2, 2023

    Recently, Trend Micro researchers noticed a spike in the number of emails received by one of our customers. After further investigation, they found that three other customers in the hospitality industry were also affected. The researchers observed that most of the emails had subject lines that attempt to catch victims’ attention: “help,” “requesting for assistance,” ...

  • CISA Releases Five Industrial Control Systems Advisories

    March 2, 2023

    CISA released five Industrial Control Systems (ICS) advisories on March 2, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations: ICSA-23-061-01 Mitsubishi Electric MELSEC Series ICSA-23-061-02 Baicells Nova Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency Related ...

  • US Launches Aggressive National Cybersecurity Strategy

    March 2, 2023

    The Biden administration is pushing for more comprehensive federal regulations to keep the online realm safer against hackers, including by shifting cybersecurity responsibilities away from consumers to industry and treating ransomware attacks as national security threats. The plan is part of the National Cyber Strategy that the administration released Thursday, outlining long-range goals for how individuals, government ...

  • UAE Executive Office of Anti-Money Laundering and Counter Terrorism Financing Gold sponsor of World Police Summit 2023

    March 2, 2023

    Abu Dhabi, United Arab Emirates, 2nd March 2023: The Executive Office of Anti-Money Laundering and Counter Terrorism Financing (EO AML/CTF) has announced its participation in the 2023 edition of the World Police Summit as gold sponsor. The Summit will take place at the Dubai World Trade Centre from 7-9 March. The Summit takes place under the ...

  • Subdomain Reputation: Detecting Malicious Subdomains of Public Apex Domains

    March 2, 2023

    Cybercriminals regularly leverage popular dynamic domain name system (DDNS) or web hosting services to store and distribute their content. Threat actors leverage these for command and control (C2), malware distribution and phishing. This abuse has created the need for new detection methods for malicious subdomains. DDNS and web hosting services often allow people to serve content ...

  • Leveraging data science to minimize the blast radius of ransomware attacks

    March 2, 2023

    As ransomware groups continue to build on their arsenal of tactics, techniques, and procedures (TTPs), it’s essential for cybersecurity professionals to assess the levels of risk to their organizations using multiple sources of information for a comprehensive outlook on this ever-evolving threat. Common Vulnerabilities and Exposures (CVE) data, for example, can guide defenders in determining ...

  • CISA Releases Decider Tool to Help with MITRE ATT&CK Mapping

    March 1, 2023

    Today, CISA released Decider, a free tool to help the cybersecurity community map threat actor behavior to the MITRE ATT&CK framework. Created in partnership with the Homeland Security Systems Engineering and Development Institute™ (HSSEDI) and MITRE, Decider helps make mapping quick and accurate through guided questions, a powerful search and filter function, and a cart ...

  • Iron Tiger’s SysUpdate Reappears, Adds Linux Targeting

    March 1, 2023

    Iron Tiger is an advanced persistent threat (APT) group that has been focused primarily on cyberespionage for more than a decade. In 2022, we noticed that they updated SysUpdate, one of their custom malware families, to include new features and add malware infection support for the Linux platform. We found the oldest sample of this updated ...

  • Registration for DSEI Japan ends 8 March 2023

    March 1, 2023

    Time is running out! Connect with the Japanese defence industry – register for DSEI Japan and take advantage of Japan’s biggest defence event before registration closes on 8 March 2023 at 15:00 GMT. DSEI Japan 2023 is going to be the biggest edition yet, featuring full Japanese government support by the Japanese MoD, Ministry of Foreign Affairs ...

  • Twitter down for more than an hour around world

    March 1, 2023

    Twitter was unavailable for users around the world for over an hour on Wednesday morning, the latest in a spate of technical difficulties suffered by the site since its takeover by Elon Musk. Beginning at about 10:20am UK time, visitors to Twitter.com were greeted with error messages. Although the total outage was rapidly fixed, the site ...