February 2023 – Page 8 – TheCyberThrone

Cl0p Ransomware exploits GoAnywhere MFT Bug

The Clop ransomware group claims that it has stolen sensitive data from over 130 organizations by exploiting Fortra’s GoAnywhere MFT secure file transfer tool tracked as CVE-2023-0669. Fortra advisory says the zero-day…

PravinKarthik February 12, 2023

NewsPenguin Phishing Campaign

Researchers have spotted a espionage campaign from a novel threat actor called NewsPenguin against Pakistan's military-industrial complex for months, using an advanced malware tool. PIMEC (Pakistan International Maritime Expo) a…

PravinKarthik February 11, 2023

Dota 2 Game Users Malveritised

Researchers have discovered the activities of threat actors involving uploading several modifications “mods” containing malicious code into the catalog in the official Steam store that players of the popular Dota…

PravinKarthik February 11, 2023

CISA adds Vulnerabilities to Known Exploited Catalog Part II – February 2023

The US CISA adds Intel, Terramaster, GoAnywhere MFT flaws, respectively tracked as CVE-2015-2291, CVE-2022-24990 and CVE-2023-0669 to its Known Exploited Vulnerabilities Catalog. The first flaw tracked as CVE-2015-2291 with a…

PravinKarthik February 11, 2023

TA886 makes use of Screenshotter Malware

Researchers have spotted a threat actor known to be TA886, making use of a new custom-made malware, the Screenshotter, that perform surveillance before stealing data. The initial campaign was spotted…

PravinKarthik February 11, 2023

Indigo Book Store discloses a Data Breach

A canadian book store chain, Indigo Books & Music, is a victim of a cyber attack, leading the company to temporarily shut down its website and only allow cash payments.…

PravinKarthik February 10, 2023

Weee! Data Breach – 1.1M Customers Affected

Weee! a U.S based online grocery delivery platform has disclosed a data breach affecting nearly 1.1 million customers. Its delivering food across 48 states in the USA via warehouses spread…

PravinKarthik February 10, 2023