Mar 05, 2024NewsroomAttack Surface / Exposure Management Startups and scales-ups are often cloud-first organizations and rarely have sprawling legacy on-prem environments. Likewise, knowing the agility and flexibility that cloud environments provide, the mid-market is predominantly running in a hybrid state, partly in the cloud but with some on-prem assets. While there has been a bit…

Mar 05, 2024NewsroomCybercrime / Malware A new DNS threat actor dubbed Savvy Seahorse is leveraging sophisticated techniques to entice targets into fake investment platforms and steal funds. ” Savvy Seahorse is a DNS threat actor who convinces victims to create accounts on fake investment platforms, make deposits to a personal account, and then transfers those…

Mar 05, 2024NewsroomMalware / Artificial Intelligence More than 225, 000 logs containing compromised OpenAI ChatGPT credentials were made available for sale on underground markets between January and October 2023, new findings from Group- IB show. These credentials were found within information stealer logs associated with LummaC2, Raccoon, and RedLine stealer malware. ” The number of…

NewsroomEmail Security / Network Security Mar 05, 2024 In phishing emails, the threat actor known as TA577 has been spotted stealing NT LAN Manager (NTLM) hashes by using ZIP archive attachments. Enterprise security firm Proofpoint stated in a report released on Monday that the new attack chain” can be used for sensitive information gathering purposes…

NewsroomVulnerability / Network Security Mar 05, 2024 In JetBrains TeamCity On-Premises software, a new pair of security flaws have been discovered, allowing a threat actor to take control of the affected systems. Version 2023.11.4 addresses the issues reported in CVE- 2024- 27198 ( CVSS score: 9.8 ) and CVE- 2024- 27199 ( CVSS score: 7.3…