Cyberveillecurated by Decio
Nuage de tags
Mur d'images
Quotidien
Quotidien Hebdomadaire Mensuel

Quotidien Shaarli

Tous les liens d'un jour sur une page.

Jour précédent
Jour suivant

October 30, 2024

ClickFix tactic: The Phantom Meet

Analyse the ClickFix tactic and related campaigns. Uncover a ClickFix campaign impersonating Google Meet and cybercrime infrastructure.

14:39
sekoia, EN, 2024, ClickFix, campaigns, Google, Meet
Attacker Abuses Victim Resources to Reap Rewards from Titan Network
  • Trend Micro researchers observed an attacker exploiting the Atlassian Confluence vulnerability CVE-2023-22527 to achieve remote code execution for cryptomining via the Titan Network.
  • The malicious actor used public IP lookup services and various system commands to gather details about the compromised machine.
  • The attack involved downloading and executing multiple shell scripts to install Titan binaries and connect to the Titan Network with the attacker’s identity.
  • The malicious actor connects compromised machines to the Cassini Testnet, which allows them to participate in the delegated proof of stake system for reward tokens.
14:37
trendmicro, EN, 2024, Titan, Network, Confluence, exploitation, Atlassian, Confluence, vulnerability, CVE-2023-22527
Elon Musk-Funded PAC Supercharges ‘Progress 2028’ Democrat Impersonation Ad Campaign

An Elon Musk-funded PAC is targeting Republicans with ads that depict a fever-dream caricature of what Harris would do if elected president.

13:29
404media, EN, 2024, Misinformation, X, PAC, Elon-Musk, US, presidential, abusing, social-media
ReliaQuest Uncovers New Black Basta Social Engineering Technique - ReliaQuest

ReliaQuest has observed a new Black Basta social engineering campaign targeting users via Microsoft Teams and malicious QR codes.

12:10
reliaquest, EN, 2024, social-engineering, BlackBasta, Microsoft, Teams, QRCode, analysis