cyberveille.decio.ch

cyberveille.decio.ch

7248 bookmarks
Newest
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Exposing initial access broker with ties to Conti
Threat Analysis Group (TAG) observed a financially motivated threat actor we refer to as EXOTIC LILY, exploiting a 0day in Microsoft MSHTML (CVE-2021-40444). Investigating this group's activity, we determined they are an Initial Access Broker (IAB) who appear to be working with the Russian cyber crime gang known as FIN12 (Mandiant, FireEye) / WIZARD SPIDER (CrowdStrike).
#GoogleTAG#EXOTICLILY#CVE-2021-40444#0day#reseller#Conti#IAB
·blog.google·
Exposing initial access broker with ties to Conti
Gas Is Too Expensive; Let’s Make It Cheap!
Gas Is Too Expensive; Let’s Make It Cheap!
A search online lead me to a discovery I didn’t think was possible nowadays. I realized almost immediately that critical security issues were probably involved. I found that out of the many tens of thousands of gas stations the company claimed to have installed their product in, 1,000 are remotely hackable.
#Internet-of-Things#securelist#gas-station#EN#2022#shodan#IoT#research#hacking
·securelist.com·
Gas Is Too Expensive; Let’s Make It Cheap!
Gas Is Too Expensive; Let’s Make It Cheap!
Gas Is Too Expensive; Let’s Make It Cheap!
A search online lead me to a discovery I didn’t think was possible nowadays. I realized almost immediately that critical security issues were probably involved. I found that out of the many tens of thousands of gas stations the company claimed to have installed their product in, 1,000 are remotely hackable.
#Internet-of-Things#securelist#gas-station#EN#2022#shodan#IoT#research#hacking
·securelist.com·
Gas Is Too Expensive; Let’s Make It Cheap!
Gas Is Too Expensive; Let’s Make It Cheap!
Gas Is Too Expensive; Let’s Make It Cheap!
A search online lead me to a discovery I didn’t think was possible nowadays. I realized almost immediately that critical security issues were probably involved. I found that out of the many tens of thousands of gas stations the company claimed to have installed their product in, 1,000 are remotely hackable.
#Internet-of-Things#securelist#gas-station#EN#2022#shodan#IoT#research#hacking
·securelist.com·
Gas Is Too Expensive; Let’s Make It Cheap!
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
In what's an act of deliberate sabotage, the developer behind the popular "node-ipc" NPM package shipped a new tampered version to condemn Russia's invasion of Ukraine, raising concerns about security in the open-source and the software supply chain.
#thehackernews#EN#2022#node-ipc#developer#cyberwar#NPM#supplychain#sabotage#CVE-2022-23812
·thehackernews.com·
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
In what's an act of deliberate sabotage, the developer behind the popular "node-ipc" NPM package shipped a new tampered version to condemn Russia's invasion of Ukraine, raising concerns about security in the open-source and the software supply chain.
#thehackernews#EN#2022#node-ipc#developer#cyberwar#NPM#supplychain#sabotage#CVE-2022-23812
·thehackernews.com·
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion
In what's an act of deliberate sabotage, the developer behind the popular "node-ipc" NPM package shipped a new tampered version to condemn Russia's invasion of Ukraine, raising concerns about security in the open-source and the software supply chain.
#thehackernews#EN#2022#node-ipc#developer#cyberwar#NPM#supplychain#sabotage#CVE-2022-23812
·thehackernews.com·
Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion