Hello peepodons, time for a new #introduction v.6 on this new instance, and this time I'm the admin! :oh_no_bubble:
CrowdStrike: Iran IRGC-linked APT Imperial Kitten conducted watering-hole attacks against Israeli transportation, logistics, and technology sectors for the past 2 years. CrowdStrike described their TTPs across the cyber kill chain, known tools used, and provide IOC.
➝ 🇺🇸 🎰 Hackers that breached Las Vegas casinos rely on violent threats, research shows
➝ 🔓 🇺🇸 University of Michigan employee, student data stolen in #cyberattack
➝ 🔓 #1Password discloses security incident linked to #Okta breach
➝ 🇺🇸 Cyber attacks hit NY state #casino operation, two Hudson Valley hospitals
➝ 🇺🇸 🗳️ D.C. Board of Elections: Hackers may have breached entire voter roll
➝ 🔓 🇮🇪 Thousands of drivers have sensitive data exposed to hackers in major IT #breach
➝ 🇷🇺 📨 Pro-Russia hackers target inboxes with #0day in webmail app used by millions
➝ 🇫🇷 🇷🇺 #France says Russian state hackers breached numerous critical networks
➝ 🇳🇬 Nigerian Police dismantle #cybercrime recruitment, mentoring hub
➝ 🇵🇸 💸 #Palestine #crypto donation scams emerge amid Israel-Hamas war
➝ 🇪🇸 👮🏻♂️ #Spain arrests 34 #cybercriminals who stole data of 4 million people
➝ 🇨🇦 🇨🇳 #Canada: Lawmakers Targeted by China-Linked ‘#Spamouflage’ Disinformation
➝ 🇺🇸 🇷🇺 Ex-NSA Employee Pleads Guilty to Leaking Classified Data to #Russia
➝ 🦠 🇰🇵 N. Korean #Lazarus Group Targets Software Vendor Using Known Flaws
➝ 🦠 🇮🇷 Iranian Group #Tortoiseshell Launches New Wave of IMAPLoader #Malware Attacks
➝ 🦠 🪰 #StripedFly malware framework infects 1 million #Windows, #Linux hosts
➝ 🦠 📱 #iOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation Triangulation
➝ 🔓 📱 #Samsung Galaxy S23 hacked two more times at #Pwn2Own Toronto
➝ 🔓 Critical #OAuth Flaws Uncovered in #Grammarly, #Vidio, and #Bukalapak Platforms
➝ 🔓 🩺 Critical Flaw in NextGen's Mirth Connect Could Expose #Healthcare Data
➝ 🔓 #F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP
➝ 🔓 🍏 Hackers can force iOS and #macOS browsers to divulge #passwords and much more
➝ 🩹 #Citrix warns admins to patch #NetScaler CVE-2023-4966 bug immediately
➝ 🔓 ✌🏻 #Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops
➝ 🔓 Critical RCE flaws found in #SolarWinds access audit solution
📚 This week's recommended reading is: "Click Here to Kill Everybody: Security and Survival in a Hyper-connected World" by Bruce Schneier
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
Tortoiseshell has been active since at least 2018 and has a history of leveraging strategic website compromises to facilitate the spread of malware.
PwC reported on a recently-observed sample of malware linked to Iran-based APT Yellow Liderc (aka Imperial Kitten, Tortoiseshell, TA456, Crimson Sandstorm). Between 2022 and 2023, the threat actor conducted strategic web compromises in order to fingerprint website visitors. Targeting of these attacks have focused primarily on the maritime, shipping and logistics sectors. PwC covers the follow-on malware, and provides IOC.
Today's #CaturDay photo was taken Feb 2023 in Tel Aviv, Israel.
This #tortoiseshell feral perches within a shelter area set up by volunteers to care for homeless cats. The shelter is part of a tiny green space next to a freeway.
This cat doesn't seem to belong to anyone, yet they have (and are cared for by) a community.
Sober reflections today due to current headlines. Sorry. Hope you...and your cats...are safe.
Happy Tortoise Tuesday, and relatedly, Turtle Tuesday! 🐢🐢
Pictured here is Boudicca, an African spurred tortoise, eating her favorite mix of cherry tomatoes and dandelion greens.
#animalsofmastodon #animals #petsofmastodon #pets #reptiles #turtle #turtles #tortoise #tortoises #tortoiseshell #salad #turtletuesday #TortoiseTuesday #tuesday #dienstag #cute #animalphotography #photo #photography
Hello peepodons. time for a new #introduction v.5.1
(I change my profile pic very, very often.)
:blobcatcomfywave: Hello peepodons. #introduction v.3.1
I'm on a long duration sick leave for now, but I'm still part of the french #civil #service, I'm a #secretary. I'm going back to work in September and I'm terrified. I'm also on my way to sell my #prints online.
I work as a Senior Threat Researcher hunting for state aligned cyber threat actors (aka APTs).
I focus on threats suspected of originating in the Middle East & North Africa Region, primarily Iranian aligned threats like #TA453 (#CharmingKitten), #TA450 (#Muddywater), and #TA456 (#Tortoiseshell).
I live in Chicago(land) with 3 kids, 2 dogs and my beautiful wife.
This seems like a pretty cool place, excited to see how it grows.