Ransomware

U.S. Defense Contractor Leidos’ Data Leaked

CRA News ServiceJuly 24, 2024

Leidos Holdings, an IT services provider for the U.S. Department of Defense, the Department of Homeland Security, and NASA, has confirmed having internal data stolen from a third-party breach exposed by threat actors but emphasized that neither its network nor customer information was affected.

Plain code with the word "cyberattack" in red.

Ransomware

VMware ESXi Subjected to Attacks with Novel Play Ransomware for Linux

CRA News ServiceJuly 22, 2024

These new attacks on VMware ESXi are mostly targeting organizations in the manufacturing, professional services and construction sectors.

Cyber attack edr. Vulnerability text in binary system ascii art

EDR

New EDR Bypass Tool Touted by FIN7 Hacking Group

CRA News ServiceJuly 18, 2024

Hacking group FIN7 has been distributing its new endpoint detection and response evasion tool "AvNeutralizer" across several cybercrime forums to help bolster the stealthiness of ransomware operations.

An abstract design of a terminal display, warning about a cyber attack. Multiple rows of hexadecimal code are interrupted by red glowing warnings and single character exclamation marks. The image can represent a variety of threats in the digital world: data theft, data leak, security breach, intrusion, anti-virus failure, etc…

Breach

Atlassian’s Trello Customer Profiles Leaked

CRA News ServiceJuly 17, 2024

The profiles were leaked on the Breached hacking forum months after being stolen through an exposed REST API.

Ransomware

VMware ESXi Targeting by SEXi Ransomware Continues Under New Name

ChannelE2E TeamJuly 16, 2024

The SEXi ransomware operation under the APT INC banner has persistently targeted VMware ESXi servers since last month.

Phishing

Phishing Links Obscured Via Exploitation of URL Protection Services

ChannelE2E TeamJuly 16, 2024

Hundreds of organizations have been compromised in attacks involving the exploitation of legitimate URL protection services for malicious email link concealment as part of a phishing campaign.

MDR

Security Update: Cybersecurity 101 – MDR vs. XDR, Plus TeamViewer Confirms Cyberattack

ChannelE2E TeamJuly 7, 2024

This week also features a look at the CDK Software attack that crippled auto dealerships.

Ransomware

U.S. Defense Contractor Leidos’ Data Leaked

VMware ESXi Subjected to Attacks with Novel Play Ransomware for Linux

New EDR Bypass Tool Touted by FIN7 Hacking Group

Atlassian’s Trello Customer Profiles Leaked

VMware ESXi Targeting by SEXi Ransomware Continues Under New Name

Phishing Links Obscured Via Exploitation of URL Protection Services

Security Update: Cybersecurity 101 – MDR vs. XDR, Plus TeamViewer Confirms Cyberattack

Fast Five

Selected by the SC Media Editorial team every Tuesday.