Cybercriminal
3CX Incident Attributed to North Korea; New LockBit MacOS Sample
Mandiant Attributes 3CX Supply Chain Attack to North Korean Activity Cluster On April 11, 2023, 3CX reported that Mandiant - who investigated the supply chain attack using a digitally signed 3CXDesktopApp installer ...
Exposed Web Panel Reveals Gamaredon Group’s Automated Spear Phishing Campaigns
Executive Summary On February 09, 2023, EclecticIQ analysts identified a spear phishing campaign targeting Ukrainian government entities like the Foreign Intelligence Service of Ukraine (SZRU) and Security Service of Ukraine (SSU). Analysts ...
The Most Pressing Cybersecurity Challenges of 2023
The global cost of cybercrime attacks is rising and reached an estimated €5.5 trillion in 2021. Ransomware attacks alone hit organizations somewhere in the world every 11 seconds. Our use of and ...
ESXi Ransomware Updates Counter Recovery Script; Killnet Targets Airports and Hospitals
Malware Updates: New ESXi Ransomware Variant Counter Recovery Script Operators behind the ransomware attacks on VMware ESXi servers early February have updated their malware to counter a recovery script released by the ...
Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor
New and Noteworthy: Sandworm APT Group Attacked Ukrainian News Agency Ukrinform by Data Wiper Malwares On January 18, 2023, the Computer Emergency Response Team of Ukraine (CERT-UA) identified a data wiper malware ...
2023: Complexity Reigns in Cybersecurity as Existing Threats Adapt and New Technologies Emerge
Last December, the team looked at various topics related to the field of cyber and information security. One thing is for certain: cybersecurity is not monolithic—there are so many facets of cybersecurity, ...
ChatGPT Makes Waves Inside and Outside of the Tech Industry
New and Noteworthy: ChatGPT Makes Waves Inside and Outside of the Tech Industry Since it was made publicly available in December, ChatGPT has prompted all sorts of reactions from both inside and ...
Changes in Retail and Hospitality Cyber Threat Trends During the 2020 and 2021 Holiday Seasons
Key Infrastructure and Critical Vulnerabilities: New UBER Data Breach Highlights the Organizational Vulnerability From Supply Chain Attacks and Third-Party Software A recent breach of the mobile device management platform Teqtivity has led ...
EclecticIQ Retrospect: A Look at the Themes & Events that Shaped the 2022 Cyber Landscape
As this year draws to a close, EclecticIQ’s Intelligence & Research Team looked back on another year of growth and change in cybersecurity. This year brought about changes in malware TTPs and ...
Escalation of Information Stealer Capabilities Targeting Valid Accounts Increases Risk Into 2023
New and Noteworthy: Escalation of Information Stealer Capabilities Targeting Valid Accounts Increases Risk Into 2023 Information Stealing Malware Shows a Strong Trend Toward Targeting Account Information That Can be Deployed in Future ...