Derek Krein
- 34 Posts
Cyber Threat Weekly – #22
The week of April 15th through April 21st was heavier than the last couple of weeks with 424 cyber news articles reviewed. With a large amount of cyber threat trend and adversarial behavior news available, really got selective this week. Let’s start with LockBit maybe trying to rebrand. Third-party
Cyber Threat Weekly – #21
The week of April 8th through April 14th was light with 376 cyber security articles reviewed. A less than average amount of cyber threat trend and adversarial behavior news to share. Let’s start with QakBot, still signs of life. Retailers targeted in multichannel attacks. Trending, malware-initiated Internet scanning. Discovered,
Cyber Threat Weekly – #20
The week of April 1st through April 7th was light compared to previous weeks with only 391 cyber news articles reviewed. That said, there was still a moderate amount of cyber threat trend and adversarial behavior news. Let’s start with a new adversary tool designed to hide malware. An
Cyber Threat Weekly – #19
The week of March 25th through March 31st was on the lighter side of average with 438 cyber news articles reviewed. A relatively light amount of cyber threat trend and adversarial behavior news to share. Let’s start with a tool that fuels cybercrime and nation state anonymity utilizing cheap
Cyber Threat Weekly – #18
The week of March 18th through March 24th was what seems to be around average now with 456 cyber news articles reviewed. This week attempted to be more selective on cyber threat trend and adversarial behavior news shared. Still a large newsletter. Would love to hear your feedback. Let’s
Cyber Threat Weekly – #17
The week of March 11th through March 17th was about average with 454 cyber news articles reviewed. Only a moderate amount of cyber threat trend and adversarial behavior news. Let’s start with threat actors deploying n-day exploits and dropping Linux remote access trojan (RAT). Component Object Model (COM) objects
Cyber Threat Weekly – #16
The week of March 4th through March 10th was a bit light with 456 cyber news articles combed through. Still a decent amount of cyber threat trend and adversarial behavior news. Let’s start with cybercriminals observed switching TTPs quickly to maintain effectiveness. Web browser credential dumping is picking up
Cyber Threat Weekly – #15
With 507 cyber news articles, the week of February 26th to March 3rd was moderately heavy on threat trends and adversary behavioral patterns. Let’s start with Russian threat actors target cloud infrastructure. Attackers use unsupported CMS editor to facilitate SEO poisoning. Major brands subdomains hijacked for massive spam campaign.
Cyber Threat Weekly – #14
With 458 cyber threat news articles, the week of February 19th to the 25th was relatively light in threat trends and adversary behavior news. Let’s start with a carryover from last week, over 28,000 exchange servers vulnerable to now patched bug. Bricks WordPress theme under active exploitation. Researchers
Cyber Threat Weekly – #13
With 483 cyber news articles combed through, the week of February 12th to the 18th was interesting to say the least. Let’s start with a new stealthy malware using reverse proxy tools. Execs targeted with an Azure account hijacking campaign, still ongoing. Keeping an eye on dark LLMs. QR
