Cobalt Stike Beacon Detected – 39[.]100[.]26[.]144:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]243[.]189[.]70:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]242[.]86[.]193:2087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]252[.]57:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]32[.]59[.]93:8009
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Bulletin (SB22-080):Vulnerability Summary for the Week of March 14, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Lapsus$ gang claims to have hacked Microsoft source code repositories
Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. Microsoft announced that...
Fake Esports voting sites looking to phish Steam users
We’ve seen Esports occasionally become the focus of gaming or Steam scams. One particular tactic of note was to claim...
AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI
The FBI has issued an advisory about the AvosLocker ransomware. Notably the FBI has noticed that several victims have reported...
Vortex – VPN Overall Reconnaissance, Testing, Enumeration And eXploitation Toolkit
VPN Overall Reconnaissance, Testing, Enumeration and This kind of behaviour makes Vortex really easy to use. General Workflow Vortex has...
Conti Ransomware Victim: https-ocaglobal-com-en
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Italy’s data privacy watchdog investigates how Kaspersky manages Italian users’ data
Italy’s data privacy watchdog launched an investigation into the “potential risks” associated with the use of Russian antivirus software Kaspersky....
Hacker leaked a new version of Conti ransomware source code on Twitter
A Ukrainian security researcher has leaked more source code from the Conti ransomware operation to protest the gang’s position on...
Facebook phish claims “Someone tried to log into your account”
Watch out for bogus Facebook phishing messages winging their way to your mailbox. The ruse is quite simple: The mail...
Oh365UserFinder – Python3 O365 User Enumeration Tool
Oh365UserFinder is used for identifying valid o365 accounts and domains without the risk of account lockouts. The tool parses responses...
A week in security (March 14 – 20)
Last week on Malwarebytes Labs: Beware of this bogus (and phishy) “Instagram Support” emailMeet Exotic Lily, access broker for ransomware...
Cobalt Stike Beacon Detected – 101[.]42[.]252[.]23:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]38[.]142[.]55:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]8[.]105[.]112:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 195[.]133[.]53[.]84:8086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
DirtyMoe modules expand the bot using worm-like techniques
The DirtyMoe botnet continues to evolve and now includes a module that implements wormable propagation capabilities. In June 2021, researchers from...
LockBit 2.0 Ransomware Victim: rh-europe[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: STUDIO PEREGO S[.]R[.]L[.]
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: besp-oak[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
