DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers

Japan’s National Police Agency (NPA) and National Center of Incident Readiness and Strategy for Cybersecurity (NCSC) accused a China-linked threat actor named MirrorFace of orchestrating a persistent attack campaign targeting organizations, businesses, and individuals in the country since 2019. The primary objective of the attack campaign is to steal information related to Japan’s national

Government, financial, and industrial organizations located in Asia, Africa, and Latin America are the target of a new campaign dubbed PassiveNeuron, according to findings from Kaspersky. The cyber espionage activity was first flagged by the Russian cybersecurity vendor in November 2024, when it disclosed a set of attacks aimed at government entities in Latin America…

NCC Group saw over 570 ransomware attacks in December 2024, the highest number since it started monitoring them in 2021.  The post Record Number of Ransomware Attacks in December 2024 appeared first on SecurityWeek.

ACS Information Age reports: Major Australian in vitro fertilisation (IVF) provider Genea is working to reassure distressed patients after confirming that an “unauthorised third party” has accessed its data in a breach whose scope is still becoming clear. A nationwide provider of IVF services that is among Australia’s largest, the firm said in an update that it had detected…

This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during March and April

When DataBreaches was a kid, the “new math” they were experimenting with had us learning binary and other systems. It didn’t go over well with us, our teachers, or our parents back then. Now the “new math” for me is UNCs — specifically 6040, 5537, 3944, and 6240. 6040+5537+3944 +6240 = Scattered Spider + ShinyHunters…