Ravie Lakshmanan reports: The Iranian nation-state group known as MuddyWater has been observed carrying out destructive attacks on hybrid environments under the guise of a ransomware operation. That’s according to new findings from the Microsoft Threat Intelligence team, which discovered the threat actor targeting both on-premises and cloud infrastructures in partnership with another emerging activity cluster dubbed DEV-1084….
Category: Of Note
New Batch of Classified Documents Appear on Social Media Sites
DNYUZ reports: A new batch of classified documents that appear to detail American national security secrets from Ukraine to the Middle East to China surfaced on social media sites on Friday, alarming the Pentagon and adding turmoil to a situation that seemed to have caught the Biden administration off guard. The scale of the leak…
MSI Confirms Cyberattack, Advises Caution With Firmware
Andrew E. Freedman reports: Gaming hardware manufacturer MSI confirmed today that it was the victim of a cyberattack. In a brief statement on its website, the company said that the attack hit “part of its information systems,” which have since returned to regular operations. The company advises its customers only to get BIOS and firmware updates…
10 Australians arrested as part of international illegal marketplace takedown
This is a joint media release between the Australian Federal Police and New South Wales Police Force, Queensland Police Service and Victoria Police. Editor’s note: Vision from the arrests is available via Hightail A well-known criminal marketplace offering access to stolen account credentials and compromised device information has been shut down following an international investigation led…
Microsoft leads effort to disrupt illicit use of Cobalt Strike, a dangerous hacking tool in the wrong hands
Elias Groll and AJ Vicens report: Microsoft’s Digital Crimes Unit, cybersecurity firm Fortra and the Health Information Sharing & Analysis Center announced legal action Thursday to seize domains related to criminal activity involving cracked copies of the security testing application Cobalt Strike, which has become a favorite tool for cybercriminals to carry out attacks around…
Sentiment recovers $870K after negotiations with hacker
Ezra Reguerra reports: Lending protocol Sentiment has managed to recover the stolen funds from the recent hack by offering the hacker a bounty worth $95,000. In an on-chain transaction on the Arbitrum blockchain, Sentiment sent a message to the hacker offering $95,000 if the hacker returned the funds by April 6, urging the hacker to “do the…