Russian Hackers Deploy Advanced Evasion Tactics Using Cloudflare to Target Ukraine
Russian state-linked group Gamaredon adopts sophisticated concealment methods, leveraging Cloudflare Tunnels and DNS fast-flux to deliver GammaDrop malware through spear-phishing attacks. The campaign specifically targets Ukrainian organizations while employing legitimate services to evade detection.
Russian-Linked Cyberattacks and Social Media Manipulation Target Romanian Presidential Election
Romania's presidential elections faced over 85,000 intrusion attempts targeting electoral IT infrastructure, along with coordinated social media manipulation campaigns supporting a pro-Russian candidate. Intelligence reports suggest state-sponsored actors behind sophisticated attacks, while TikTok influence operations bypass platform controls and electoral laws.
Iranian Cyberattack Targets Trump's FBI Director Nominee Kash Patel
A suspected Iranian cyberattack has struck FBI director nominee Kash Patel just days after his nomination by President-elect Trump. The incident adds complexity to Patel's potential confirmation process and raises questions about Iranian retaliation given his previous involvement in policies targeting the regime.
Internet Cable Disruption Hits Nordic Region: Two Key Links Damaged Between Sweden and Finland
Two fiber optic cables connecting Sweden and Finland were damaged on Monday, affecting thousands of customers. While one break was confirmed as construction-related, the incident follows recent suspicious undersea cable cuts in the Baltic Sea currently under NATO investigation.
Texas Defense Contractor ENGlobal Hit by Ransomware Attack, Operations Disrupted
Houston-based ENGlobal Corporation, which serves major U.S. government agencies, was forced to restrict IT system access following a ransomware attack on November 25. The engineering firm is working with cybersecurity experts to investigate the breach while maintaining essential operations.
Researchers Crack SonicWall Firmware Encryption, Enabling Deep Security Analysis
Security researchers at Bishop Fox achieve breakthrough in decrypting SonicWall firewall firmware, providing unprecedented access to analyze these crucial network security devices. The discovery enables thorough security auditing of widely-deployed SonicWall products and improved detection capabilities for internet-exposed devices.
Global Cybercrime Sting: INTERPOL Operation Nets 5,500 Arrests and $400M in Seized Assets
A massive five-month INTERPOL operation spanning 40 countries has resulted in over 5,500 arrests and the seizure of $400 million in virtual assets. The operation uncovered sophisticated voice phishing networks and cryptocurrency scams, demonstrating increased international cooperation in fighting cybercrime.
Rockstar 2FA: The New Phishing Toolkit Bypassing Microsoft 365 Security
A sophisticated phishing toolkit called Rockstar 2FA is enabling cybercriminals to bypass Microsoft 365's multi-factor authentication through adversary-in-the-middle attacks. Available for just $200, this accessible platform provides advanced features like cookie harvesting and customizable login pages that pose a significant threat to organizations.
Holiday Season Disrupted: Blue Yonder Ransomware Attack Impacts Starbucks and Global Retailers
A major ransomware attack on supply chain software provider Blue Yonder has caused significant disruptions for major retailers including Starbucks and UK supermarket chains. The cybersecurity incident has forced companies to resort to manual processes and backup systems during the critical holiday shopping period.
Bootkitty: First UEFI Bootkit Malware Targeting Linux Systems Discovered
Security researchers have identified Bootkitty, a groundbreaking UEFI bootkit malware specifically designed to target Linux systems. This proof-of-concept malware can disable kernel signature verification and persist through OS reinstallation, marking a concerning evolution in firmware-level threats.