ASN: AS2614
Location: Bucharest, RO
Added: 2025-04-04T02:04

Russia jails hacker for two years over cyberattack on local tech company https://therecord.media/russia-jails-hacker-over-cyberattack-on-tech-firm #cybersecurity #infosec

ASN: AS7303
Location: San Carlos Centro, AR
Added: 2025-04-03T23:54

ASN: AS141995
Location: Singapore, SG
Added: 2025-04-04T13:47

This dumb password rule is from Electronic Arts (EA).

Your password must be 8 - 16 characters, and include at least one lowercase letter, one uppercase letter, and a number.

https://dumbpasswordrules.com/sites/electronic-arts-ea/

ASN: AS14061
Location: North Bergen, US
Added: 2025-04-05T14:51

Via a friend, Senior Cyber Security Analyst job at UTas

https://careers.utas.edu.au/ci/en/job/500915/senior-cyber-security-analyst

Australien: Konten bei Pensionsfonds nach Cyberangriff anscheinend leer https://www.golem.de/news/australien-konten-bei-pensionsfonds-nach-cyberangriff-anscheinend-leer-2504-195035.html #cybersecurity #infosec

ASN: AS3352
Location: Barcelona, ES
Added: 2025-04-05T02:39

ASN: AS27357
Location: Reston, US
Added: 2025-04-06T02:44

30 minutes to pwn town: Are speedy responses more important than backups for recovery? https://go.theregister.com/feed/www.theregister.com/2025/04/04/30_minutes_to_pwn_town/ #cybersecurity #infosec

ASN: AS2514
Location: Tokyo, JP
Added: 2025-04-05T07:22

Vidar Stealer: Infostealer malware discovered in Steam game

A recent analysis uncovered a sophisticated deployment of Vidar Stealer, an infamous information-stealing malware, disguised as a legitimate Microsoft Sysinternals tool, BGInfo.exe. The malware, found with an expired Microsoft signature, was significantly larger than the original file and contained modified initialization routines. It creates virtual memory allocations to execute its malicious code, ultimately extracting and running Vidar Stealer. This variant maintains its core functionalities, including credential theft, cryptocurrency wallet targeting, session hijacking, and cloud data theft. The incident highlights the evolving tactics of cybercriminals, emphasizing the need for vigilant threat hunting and proactive security measures.

Pulse ID: 67f42a4eca9270b211468d90
Pulse Link: https://otx.alienvault.com/pulse/67f42a4eca9270b211468d90
Pulse Author: AlienVault
Created: 2025-04-07 19:41:02

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

PoisonSeed Campaign Targets CRM and Bulk Email Providers in Supply Chain Spam Operation

A new threat group, dubbed PoisonSeed, is targeting enterprise organizations and individuals outside the cryptocurrency industry. The campaign focuses on phishing CRM and bulk email providers' credentials to export email lists and send bulk spam. The attackers use a cryptocurrency seed phrase poisoning attack, providing security seed phrases to trick victims into compromising their wallets. Similarities have been detected between PoisonSeed, Scattered Spider, and CryptoChameleon, but the campaign is being classified separately due to unique characteristics. The attackers have set up phishing pages for prominent CRM and bulk email companies, including Mailchimp, SendGrid, Hubspot, Mailgun, and Zoho. Once credentials are phished, the process of bulk downloading email lists appears to be automated. The campaign also involves spam sent from compromised accounts, including a notable breach of an Akamai SendGrid account.

Pulse ID: 67f432acbd8d0957264e79a3
Pulse Link: https://otx.alienvault.com/pulse/67f432acbd8d0957264e79a3
Pulse Author: AlienVault
Created: 2025-04-07 20:16:44

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

How can we integrate the required people, processes and data to keep our digital ecosystem secure?

That's the challenge being discussed at #VulnCon25. We just wrapped day 1 with thought-provoking sessions and workshops focused on vulnerability management, AI security and global collaboration. Highlights included:

- Lisa Bradley and Sarah Evans (Dell) addressing AI vulnerabilities and evolving security practices
- Justin Murphy (CISA) and Tomo Ito (JPCERT/CC) exploring global partnerships for Coordinated Vulnerability Disclosure
- Johan Caluwe and Susan Bushe spotlighting Belgium's first ethical hacking initiative for government security. The day wrapped up with networking opportunities at the opening reception sponsored by Brinqa.

Can't wait to see what day 2 will bring. Check out the agenda for tomorrow here: https://go.first.org/r91zE

#cybersecurity #infosec #VulnerabilityManagement

ASN: AS7018
Location: Garden Grove, US
Added: 2025-04-03T17:09

Thailand Enhances Cyber Resilience with AI-Powered Security Measures https://thecyberexpress.com/thailand-google-cloud-to-combat-cyber-threats/ #cybersecurity #infosec

ASN: AS16086
Location: Porvoo, FI
Added: 2025-04-05T18:27

L'Ipssi forme à la cybersécurité, au code et à l'IA à Marne-La-Vallée
https://www.lemondeinformatique.fr/actualites/lire-l-ipssi-forme-a-la-cybersecurite-au-code-et-a-l-ia-a-marne-la-vallee-96543.html

Malicious VSCode Extensions Install Cryptominers on Windows

Nine VSCode extensions on Microsoft's Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer to mine Ethereum and Monero.

Pulse ID: 67f428bae16e9444a492f8a8
Pulse Link: https://otx.alienvault.com/pulse/67f428bae16e9444a492f8a8
Pulse Author: cryptocti
Created: 2025-04-07 19:34:18

Be advised, this data is unverified and should be considered preliminary. Always do further verification.