Gazing through the digital stars is the threat group Stargazer Goblin. It has launched a Distribution-as-a-Service (DaaS) network using over 3,000 GitHub accounts to spread malware and phishing links. Meanwhile, the North Korean APT45 group has been focusing on financially driven activities to target several sectors, including finance and critical infrastructure. According to a report, over 90% of major malware families exploited PowerShell in the first half of 2024. Read further for the latest cybersecurity news.
01
The threat group Stargazer Goblin has been found operating a DaaS network of over 3,000 GitHub accounts called the Stargazers Ghost Network that distributes malware or malicious links via phishing repositories.
02
The North Korean hacking group APT45 has transitioned from espionage to financially motivated operations, including suspected ransomware development to target various sectors, such as finance, critical infrastructure, healthcare, and crop science.
03
A threat actor has unveiled the Darkgate Autoit Converter Crypter on a dark web forum, claiming it can fully bypass Windows Defender and most antiviruses.
04
Krampus, a new malware loader has surfaced on the dark web that supports various archive formats and PowerShell scripts, with no encryption required, making it easier to evade detection.
05
Researchers have uncovered a privilege escalation vulnerability, ConfusedFunction, in GCP’s Cloud Functions service, which attackers could exploit to gain unauthorized access to other services and sensitive data.
06
Nvidia has patched vulnerabilities (CVE-2024-0108 and CVE-2024-0101), affecting several of its AI and networking products, which could be exploited to launch DoS attacks, execute code, and escalate privileges.
07
An insecure deserialization vulnerability CVE-2024-6327 has been identified in Progress Telerik Report Server versions before 2024 Q2 (10.1.24.709) that could allow attackers to execute remote code on affected systems.
08
In the first half of 2024, 70% of BEC attacks employed diverse social engineering methods, IoT malware surged by 107%, and over 90% of major malware families exploited PowerShell for malicious purposes, as per a report.
09
Vanta, a trust management platform, raised a $150 million Series C funding round led by Sequoia Capital, in addition to new investors Growth Equity at Goldman Sachs Alternatives, J.P. Morgan, and existing investors.
10
The global human risk management platform Mimecast, announced the acquisition of Code42, an insider threat and data loss protection solution provider.
