Velociraptor incident response tool abused for remote access
This approach represents an evolution from threat actors abusing remote monitoring and management tools
Similar Posts
Tallahassee Memorial Healthcare reveals it was also impacted by Cerner/Legacy Oracle cyberattack
Bys sWTXL reports: Tallahassee Memorial Healthcare is releasing more information regarding a cybersecurity event that happened this past January. A spokesperson told WTXL ABC 27 they were recently notified that a previous vendor TMH used had experienced a cybersecurity event involving unauthorized access to data, including certain patient information. TMH says its current electronic health record…
Gmail’s protections are strong and effective, and claims of a major Gmail security warning are false.
Bys sFrom Google’s blog, today, to try to counter headlines about any major security concern: We want to reassure our users that Gmail’s protections are strong and effective. Several inaccurate claims surfaced recently that incorrectly stated that we issued a broad warning to all Gmail users about a major Gmail security issue. This is entirely false…….
Four months after learning of a vendor’s breach, Concord Orthopaedics notifies almost 68,000 patients
Bys sIn November 2024, Everest Team added Concord Orthopaedics (“COPA”) to its dark web leak site (DLS) with screenshots offered as proof of claims. At the time, Everest claimed to have acquired “medical records and personal data of all patients from 2018. More than 30,000 identity documents.” On March 25, 2025, COPA mailed notifications to those…
Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures
Bys sThreat actors have been observed leveraging fake artificial intelligence (AI)-powered tools as a lure to entice users into downloading an information stealer malware dubbed Noodlophile. “Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms – often advertised via legitimate-looking Facebook groups and viral social media campaigns,”
Exclusive: Brosix and Chatox promised to keep your chats secured. They didn’t.
Bys sChatox and Brosix are communications platforms that advertise for personal use and team use. They are owned by Stefan Chekanov. The only statement Chatox makes about its data security is “Chatox employs encryption across all communications, making it an extremely secure communication and collaboration platform.” Brosix Enterprise advertises its security: Brosix provides you with an…
Citrix Releases Security Fix for NetScaler Console Privilege Escalation Vulnerability
Bys sCitrix has released security updates for a high-severity security flaw impacting NetScaler Console (formerly NetScaler ADM) and NetScaler Agent that could lead to privilege escalation under certain conditions. The vulnerability, tracked as CVE-2024-12284, has been given a CVSS v4 score of 8.8 out of a maximum of 10.0 It has been described as a case…