| ID | Votes | Profile Description |
|---|---|---|
| MuddyWater | 5 | MuddyWater is an advanced persistent threat (APT) group, also known as Earth Vetala, MERCURY, Static Kitten, Seedworm, and TEMP.Zagros. This threat actor has been linked to the Iranian Ministry of Intelligence and Security (MOIS) according to a joint advisory from cybersecurity firms. The group empl |
| Mango Sandstorm | 2 | Mango Sandstorm, also known as MuddyWater or Mercury, is a threat actor group linked to Iran's Ministry of Intelligence and Security (MOIS) by the Israeli government. The group has been identified as being involved in several cyber-attacks, utilizing various tactics to gain initial access to targete |
| Mint Sandstorm | 2 | Mint Sandstorm, an Iranian nation-state threat actor also known as APT35 and Charming Kitten, has been identified by Microsoft as a significant cybersecurity concern. The group is linked to Iran's Islamic Revolutionary Guard Corps and is known for its sophisticated cyber campaigns targeting high-val |
| TEMP.Zagros | 1 | TEMP.Zagros, also known as MuddyWater, Earth Vetala, MERCURY, Static Kitten, and Seedworm, is an Iran-nexus threat actor that has been active since at least May 2017. This group is associated with the Iranian Ministry of Intelligence and Security (MOIS) and has historically targeted regions and sect |
| POLONIUM | 1 | Polonium is a threat actor group, believed to be based in Lebanon, that has been responsible for significant cyberattacks on Israel's operational technology (OT) and critical infrastructure. In December, Israel's National Cyber Directorate issued warnings that Polonium had targeted critical sectors |
| Static Kitten | 1 | Static Kitten, also known as MuddyWater, Mercury, Mango Sandstorm, and TA450, is an Iranian government-sponsored hacking group suspected to be linked to the Iranian Ministry of Intelligence and Security. The group has been active since 2017 and is notorious for its cyber-espionage activities. Static |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Quartz | Unspecified | 1 | Quartz is a potent malware that has recently been in the spotlight for its alleged role in a high-profile cyberattack. The New York Times was accused by OpenAI of employing someone to use Quartz to hack ChatGPT, one of OpenAI's advanced language models. This incident underscores the growing threat o |
| Mars | Unspecified | 1 | Mars is a malicious software (malware) that has been discovered by Trend Micro's Mobile Application Reputation Service (MARS) team. This malware is particularly damaging as it involves two new Android malware families related to cryptocurrency mining and financially-motivated scam campaigns, targeti |
| Lucky | Unspecified | 1 | "Lucky" is a malicious software (malware) that has been compromising systems, causing significant disruptions and potential data loss. This malware infiltrates systems through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside a system, it can steal personal inform |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| Phosphorus | Unspecified | 2 | Phosphorus, also known as APT35 or Charming Kitten, is a notorious Iranian cyberespionage group linked to the Islamic Revolutionary Guard Corps (IRGC). This threat actor has been involved in a series of malicious activities, employing novel tactics and tools. A significant discovery was made by the |
| APT35 | Unspecified | 2 | APT35, also known as the Newscaster Team, Charming Kitten, and Mint Sandstorm, is an Iranian government-sponsored cyber espionage group. The group focuses on long-term, resource-intensive operations to collect strategic intelligence. They primarily target sectors in the U.S., Western Europe, and the |
| Lace Tempest | Unspecified | 1 | Lace Tempest, a threat actor known for executing actions with malicious intent, has been identified as the orchestrator behind a series of cyber attacks exploiting a zero-day vulnerability in SysAid. The exploit was first brought to light by SysAid and further detailed in a blog post on TuxCare. Thi |
| Boggy Serpens | Unspecified | 1 | None |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| CVE-2023-27350 | Unspecified | 2 | CVE-2023-27350 is a significant software vulnerability discovered in PaperCut NG/MF, a popular print management software. This flaw in software design or implementation allows attackers to bypass authentication and execute code with system privileges, posing a serious threat to both server and inter |
| Log4Shell | Unspecified | 1 | Log4Shell is a software vulnerability, specifically a flaw in the design or implementation of the popular Java logging library, Log4j. Identified as CVE-2021-44228, this vulnerability allows an attacker to remotely execute arbitrary code, often leading to full system compromise. Advanced Persistent |
| Source | CreatedAt | Title |
|---|---|---|
| BankInfoSecurity | 10 days ago | Iranian State Hackers Are Deploying a New Malware Backdoor |
| Malwarebytes | 24 days ago | Affirm says Evolve Bank data breach also compromised some of its customers | Malwarebytes |
| BankInfoSecurity | 24 days ago | Evolve Ransomware Hack Affects Affirm and Fintech Companies |
| CERT-EU | 6 months ago | Kansas State President Gives Cybersecurity Update | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting |
| CERT-EU | 6 months ago | Google plans to allow more real-money games on the Play Store, starting with India, Brazil, and Mexico in June 2024, in compliance with local laws |
| CERT-EU | 9 months ago | Hybrid IT opens new avenues for cybercriminals |
| CERT-EU | 7 months ago | APPALACHIAN POWER, WHEELING POWER SEEK APPROVAL OF SETTLEMENT AGREEMENT IN FUEL COST CASES |
| CERT-EU | 7 months ago | AEP SIGNS AGREEMENT TO SELL NEW MEXICO SOLAR ASSETS |
| Recorded Future | 7 months ago | Threat Intelligence to Elevate Your Security Defenses | Recorded Future |
| CERT-EU | 8 months ago | Does Private Internet Access Work in Russia? (2023) |
| CERT-EU | 8 months ago | Italy's competition watchdog opens an investigation into whether Meta has failed to provide adequate information on how to mark branded content on Instagram |
| CERT-EU | 8 months ago | A California jury convicts former VC Mike Rothenberg for defrauding investors on 21 counts of bank fraud, false statements, money laundering, and wire fraud |
| CERT-EU | 9 months ago | Insights from Security Mavericks: Interpublic Group, FICO, and Mercury |
| CERT-EU | 9 months ago | Techrights — Links 27/10/2023: Facebook Shrinks by a Lot, Yet More Microsoft Layoffs |
| CERT-EU | 9 months ago | A researcher details malicious and convincing Google ads linking to a fake site for password manager KeePass; Google shows a verified advertiser paid for them |
| Naked Security | a year ago | Serious Security: Rowhammer returns to gaslight your computer |
| CERT-EU | 10 months ago | New Zealand university operating despite cyberattack |
| CERT-EU | 10 months ago | ASX dives to 60-day low after Wall Street’s worst day in six months |
| CERT-EU | 10 months ago | OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes |
| CERT-EU | a year ago | Sources: Apple spent $5M on the film rights for Michael Lewis' book about Sam Bankman-Fried; at least eight Hollywood projects on SBF are in the works so far |