Latest News Articles

--- TLP:WHITE ---


− Malicious Google ads sneak AWS phishing sites into search results

A new phishing campaign targeting Amazon Web Services (AWS) logins is abusing Google ads to sneak phishing sites into Google Search to steal your login credentials.

− Chinese Tonto Team Hackers' Second Attempt to Target Cybersecurity Firm Group-IB Fails

The advanced persistent threat (APT) actor known as Tonto Team carried out an unsuccessful attack on cybersecurity company Group-IB in June 2022. The Singapore-headquartered firm said that it detected and blocked malicious phishing emails originating from the group targeting its employees. It's also the second attack aimed at Group-IB, the first of which took place in March 2021.


− CISA releases recovery script for ESXiArgs ransomware victims

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a script to recover VMware ESXi servers encrypted by the recent widespread ESXiArgs ransomware attacks.

− ESXi servers worldwide encrypted using CVE-2021-21974

Attackers are exploiting ESXi servers worldwide to deploy ransomware. It appears that CVE-2021-21974 is used to gain initial access to ESXi hypervisors, which provides them the ability to remotely execute code on the exploited system.

Community News

− UPDATE (9PM 8th Feb) : Major IT Breach - MTU Cork Campus

MTU can confirm that its Cork campuses have been targeted in a cyber attack.The campus has been reopene and classes resumed while remediation and investigation continues

International Security And Estonia 2023

In last year’s report, we wrote that Russia would create the conditions and capabilities necessary to launch a large-scale military offensive against Ukraine in the second half of February 2022. Unfortunately, that is what happened. Despite setbacks and risks, Putin’s goal in Ukraine has not changed by early 2023

--- TLP:WHITE ---