Exchange Online to block emails from vulnerable on-prem servers
Microsoft is introducing a new Exchange Online security feature that will automatically start throttling and eventually block all emails sent...
OSINT
Apple Issues Urgent Security Update for Older iOS and iPadOS Models
Apple on Monday backported fixes for an actively exploited security flaw to older iPhone and iPad models. The issue, tracked...
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
20-Year-Old BreachForums Founder Faces Up to 5 Years in Prison
Conor Brian Fitzpatrick, the 20-year-old founder and the administrator of the now-defunct BreachForums has been formally charged in the U.S....
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
RansomHouse Ransomware Victim: Tanbridge House School
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – smokeloader – 9d29f5640c968ae41824e3999937b4ed
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9d29f5640c968ae41824e3999937b4edSHA1: 31560a3776918e01b6cd2e9d87fbf2ad1028ec7fANALYSIS DATE: 2023-03-27T15:24:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – ransomware – df134a54ae5dca7963e49d97dd104660
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: df134a54ae5dca7963e49d97dd104660SHA1: 9bddcce91756469051f2385ef36ba8171d99686dANALYSIS DATE: 2023-03-27T17:29:03ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – djvu – fc6df56b8d1755886817103249d35cef
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:00d92484c9b27bc8482a2cc94cacc508, discovery, persistence, ransomware, spyware, stealerMD5: fc6df56b8d1755886817103249d35cefSHA1: 0959b12645c9713c2a06485f5190c3e748d3f879ANALYSIS DATE: 2023-03-27T16:55:43ZTTPS: T1005, T1081, T1012, T1060,...
Malware Analysis – amadey – 49cd88e363a5f738cbbd54d592512330
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:rhadamanthys, family:smokeloader, family:xmrig, botnet:koreamon, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, infostealer, miner, persistence, ransomware,...
Malware Analysis – djvu – 23f7d98ddb2bafaefd121c30aeb2a7b1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:00d92484c9b27bc8482a2cc94cacc508, discovery, persistence, ransomware, spyware, stealerMD5: 23f7d98ddb2bafaefd121c30aeb2a7b1SHA1: 56e0967ba750cc8b8a7eaaad287210ff494e32a9ANALYSIS DATE: 2023-03-27T16:43:01ZTTPS: T1012, T1082, T1053, T1005,...
Microsoft Issues Patch for aCropalypse Privacy Flaw in Windows Screenshot Tools
Microsoft has released an out-of-band update to address a privacy-defeating flaw in its screenshot editing tool for Windows 10 and...
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords
A new information-stealing malware has set its sights on Apple's macOS operating system to siphon sensitive information from compromised devices....
LockBit 3.0 Ransomware Victim: mcna[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ita-moulding-process[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ulmacarretillas[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
FBI: Business email compromise tactics used to defraud U.S. vendors
The Federal Bureau of Investigation is warning companies in the U.S. of threat actors using tactics similar to business email...
Emotet malware distributed as fake W-9 tax forms from the IRS
A new Emotet phishing campaign is targeting U.S. taxpayers by impersonating W-9 tax forms allegedly sent by the Internal Revenue...
Brute Ratel C4 Detected – 52[.]192[.]166[.]233:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Malware Analysis – djvu – c2c9766bc21d684fdb277faa414fd9ce
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:00d92484c9b27bc8482a2cc94cacc508, discovery, persistence, ransomware, spyware, stealerMD5: c2c9766bc21d684fdb277faa414fd9ceSHA1: 0570ff0ab1e3de949f78a28c3baad118cfaf3e14ANALYSIS DATE: 2023-03-26T15:15:31ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – djvu – 4337baca641bc801e6223757534aee9d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:00d92484c9b27bc8482a2cc94cacc508, discovery, persistence, ransomware, spyware, stealerMD5: 4337baca641bc801e6223757534aee9dSHA1: 6b73961e68d5988454ad04de870c7ea6570aeaf1ANALYSIS DATE: 2023-03-26T15:05:04ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – smokeloader – 4293ec458e657eeb42ca2ec2eb09b76d
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 4293ec458e657eeb42ca2ec2eb09b76dSHA1: 2589d4a26f3462d7bb19756c291b6ad9235abd21ANALYSIS DATE: 2023-03-26T15:23:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – a1c240e28cf9828fe5adc68119a57fa6
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, botnet:sprg, backdoor, discovery, ransomware, trojanMD5: a1c240e28cf9828fe5adc68119a57fa6SHA1: 0afbabe69316a1b24c1fc374e58247b14a821cc3ANALYSIS DATE: 2023-03-26T16:09:36ZTTPS: T1012, T1120, T1082,...
