Cloud Atlas seen using a new tool in its attacks

We analyze the latest activity by the Cloud Atlas gang. The attacks employ the PowerShower, VBShower and VBCloud modules to download victims’ data with various PowerShell scripts. Continue reading Cloud Atlas seen using a new tool in its attacks

CloudSorcerer – A new APT targeting Russian government entities

Kaspersky discovered a new APT CloudSorcerer targeting Russian government entities and using cloud services as C2, just like the CloudWizard actor. Continue reading CloudSorcerer – A new APT targeting Russian government entities

Dark web threats and dark market predictions for 2024

An overview of last year’s predictions for corporate and dark web threats and our predictions for 2024. Continue reading Dark web threats and dark market predictions for 2024

ChatGPT at work: how chatbots help employees, but threaten business

We look at how user data privacy is handled by large language model-based chatbots: ChatGPT, Microsoft Bing, Google Bard, Anthropic Claude, You.com, and Bing. Continue reading ChatGPT at work: how chatbots help employees, but threaten business

Australia, New Zealand Enterprises Spend Big on Security — But Will It Be Enough?

Australian and New Zealand businesses will increase spending on cybersecurity by double digits… but they might not be able to spend their way to safety. Continue reading Australia, New Zealand Enterprises Spend Big on Security — But Will It Be Enough?

FanDuel Partners With AWS to Meet Demands and Expand Into New Markets

FanDuel, America’s leading sports gaming company, continues its long-standing relationship with AWS to combat high data infrastructure demands and explore sustainability and innovation strategies. Continue reading FanDuel Partners With AWS to Meet Demands and Expand Into New Markets

Common TTPs of attacks against industrial organizations

In 2022 we investigated a series of attacks against industrial organizations in Eastern Europe. In the campaigns, the attackers aimed to establish a permanent channel for data exfiltration, including data stored on air-gapped systems. Continue reading Common TTPs of attacks against industrial organizations

Bad magic: new APT found in the area of Russo-Ukrainian conflict

In October 2022, we identified an active infection of government, agriculture and transportation organizations located in the Donetsk, Lugansk, and Crimea regions. Continue reading Bad magic: new APT found in the area of Russo-Ukrainian conflict