The cyber espionage group dubbed Evasive Panda (also known as StormBamboo and previously tracked as StromCloud) compromised an unnamed Internet Service Provider (ISP) in mid-2023 to push malicious software updates to target entities. This incident marks a significant escalation in the sophistication of the group’s tactics. StormBamboo, active since at least 2012, is known for using backdoors like MgBot (also known as POCOSTICK) and Nightdoor (NetMM and Suzafk) to collect sensitive information. The group has recently been linked to the macOS malware strain MACMA, observed in the wild since 2021. “StormBamboo is a highly skilled and aggressive threat actor who…
Author: ISB Staff Reporter
Infosec Institute, a cybersecurity education provider, is parterning with Career.io, a provider of professional career-development products and services. This collaboration aims to offer comprehensive career services to students enrolled in Infosec’s Immersive Boot Camps, equipping them with the skills and support needed to transition into entry-level cybersecurity roles successfully. Students enrolling in the Cybersecurity Foundations Immersive Boot Camp will receive 30-day access to premium career services from Career.io, including AI-assisted resume and cover letter tools, a salary analyzer, and a job tracker. They will also benefit from a professional resume rewrite, LinkedIn makeover, and expert interview preparation through career.io’s sister…
A recently discovered vulnerability in the Domain Name System (DNS), dubbed ‘Sitting Ducks,’ has left millions of domains susceptible to hijacking. This attack vector, actively exploited since 2019, enables threat actors to deliver malware, phish, impersonate brands, and exfiltrate data. Researchers at Infoblox and Eclypsium identified the vulnerability, coordinating with law enforcement and national Computer Emergency Response Teams (CERTs) since June 2024. The issue arises when a registered domain or subdomain uses authoritative DNS services from a provider different from the domain registrar, a process known as name server delegation. If the authoritative name server lacks information about the domain,…
Nearly half (49%) of spam emails can be attributed to BEC scams, with the CEO, HR, and IT being the most common targets. Alarmingly, some 40% of BEC emails are AI-generated, and in some instances, AI more than likely created the entire message. These were two of the findings of the VIPRE Q2 2024 Email Threat Trends Report, which processed 1.8 billion emails globally, detecting 226.45 million spam emails and 16.91 million malicious URLs to identify the email threat trends that impact organizations the most. According to the company, the report shines the spotlight on the ingenuity of malicious actors…
Over the past year, ransomware attacks have reached unprecedented levels of ambition and boldness, highlighted by a significant increase in extortion attacks. In fact, research from Zscaler ThreatLabz revealed an unparalleled ransom payout of $75 million – the highest ever paid by a single company, nearly double the previously known record. Moreover, last year, ransomware payments surpassed $1 billion, emphasizing the growing financial impact of these cybercrimes. According to the security giant, ransomware actors have become increasingly sophisticated and daring. They’ve pushed beyond the typical corporate targets, even threatening the children of executives to secure faster and higher ransoms. No…
