Cyber Threat Intelligence – TheCyberThrone

Chinese Botnet Operations disrupted by US Authorities

The U.S. government has disrupted a botnet that was used by a Chinese state-sponsored hacking group to disguise its activities targeting critical infrastructure. The botnet that the government disrupted consisted…

PravinKarthik February 1, 2024

Year 2023

Most Prevailed Malware Families a Review -Year 2023

Malware describes any malicious program created to wreak havoc or mischief on a computer system. Thanks to the constant push-and-pull between security professionals and cybercriminals, it’s also an ever-evolving ecosystem.…

PravinKarthik December 27, 2023

Year 2023

TheCyberthrone’s Zero Day Vulnerabilities a review-Year 2023

This year 2023, have seen a total of 95+ security vulnerabilities have been exploited as unpatched zero-days in the wild, according to an stats. It affected a wide range of…

PravinKarthik December 25, 2023

Ransomware groups collaborate in an attack campaign

Researchers from ReSecurity have discovered a connection between multiple ransomeware gangs. In a recent Digital Forensics & Incident Response with a law enforcement agency, this was discovered. Resecurity’s spotted the…

PravinKarthik December 15, 2023

Chinese Threat actors infiltrating Critical US Infrastructure

Officials and security researchers from the US are warning that the Chinese military is allegedly attempting to infiltrate critical infrastructure, including power and water utilities and transportation systems in the…

PravinKarthik December 12, 2023

Log4j 2nd Year Anniversary Still a Pain

Recent research reports reveal that even after two years, several organizations are still vulnerable to Log4j. The analysis is done between August 15 and November 38,278, covering unique applications running…

PravinKarthik December 11, 2023

Atlassian fixes critical RCE vulnerabilities in its products

Atlassian has fixed four critical vulnerabilities in its software that could result in remote code execution. The first vulnerability is CVE-2022-1471 with a CVSS score 9.8, is a Deserialization vulnerability in…

PravinKarthik December 6, 2023

Microsoft Echo’s on APT 28 exploiting CVE-2023-23397

Microsoft’s Threat Intelligence (MSIRT) comes up with a warning of Russia-linked cyber-espionage group APT28 (aka Fancybear) actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts and steal sensitive…

PravinKarthik December 5, 2023