Beyond the kill chain: What cybercriminals do with their money (Part 5)
In the last of our five-part series, Sophos X-Ops explores the implications and opportunities arising from threat actors’ involvement in real-world industries and crimes
Similar Posts
Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed
Bys sAnother luxury brand has been hacked. This time it’s Cartier. And before your brain starts racing back to the recent disclosures of breaches involving Dior and Tiffany no, Cartier is not another luxury LVMH brands. Cartier is owned by Richemont. SecurityWeek reports: According to a notification sent to affected clients obtained by SecurityWeek, the compromised data…
Global operation targets NoName057(16) pro-Russian cybercrime network in Operation Eastwood
Bys sEuropol reports: Between 14 and 17 July, a joint international operation, known as Eastwood and coordinated by Europol and Eurojust, targeted the cybercrime network NoName057(16). Law enforcement and judicial authorities from Czechia, France, Finland, Germany, Italy, Lithuania, Poland, Spain, Sweden, Switzerland, the Netherlands and the United States took simultaneous actions against offenders and infrastructure belonging…
Au: Qantas hackers gave airline 72-hour deadline
Bys sDavid Hollingworth reports: A collective claiming to be behind Qantas’ recent cyber hack sent the airline nine pages of data it had apparently stolen from customers and then demanded a reply within 72 hours. The threat was revealed in documents that the Flying Kangaroo submitted to court to obtain an injunction, which has, for the first…
FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services
Bys sVarious industrial organizations in the Asia-Pacific (APAC) region have been targeted as part of phishing attacks designed to deliver a known malware called FatalRAT. “The threat was orchestrated by attackers using legitimate Chinese cloud content delivery network (CDN) myqcloud and the Youdao Cloud Notes service as part of their attack infrastructure,” Kaspersky ICS CERT said…
Microsoft Uncovers Sandworm Subgroup’s Global Cyber Attacks Spanning 15+ Countries
Bys sA subgroup within the infamous Russian state-sponsored hacking group known as Sandworm has been attributed to a multi-year initial access operation dubbed BadPilot that stretched across the globe. “This subgroup has conducted globally diverse compromises of Internet-facing infrastructure to enable Seashell Blizzard to persist on high-value targets and support tailored network operations,” the
CISO’s Guide To Web Privacy Validation And Why It’s Important
Bys sAre your web privacy controls protecting your users, or just a box-ticking exercise? This CISO’s guide provides a practical roadmap for continuous web privacy validation that’s aligned with real-world practices. – Download the full guide here. Web Privacy: From Legal Requirement to Business Essential As regulators ramp up enforcement and users grow more privacy-aware, CISOs…