CYFIRMA: Cybersecurity Dossier -Sept. 1, 2023
Threat Actor in Focus: A New APT Carderbee Exploits Legitimate Software for Malware Distribution
In a recent observation, a newly identified advanced persistent threat
The China–Russia Nexus : Fortress Eurasia or Strategic Rivalry??
The relationship between China and Russia will be one of the key determinants of the future of the Eurasian landmass. While many analysts assess their relations as amicable, already tightly knit and heading for firm future integration, the authors of this report are questioning this “common knowledge”. Our position can be easily demonstrated in official statements put forward by Beijing and Moscow. Before the annual summit this year, Putin wanted three things from China: a deal on hydrocarbon pipelines, arms supplies and generous loans. He got none of those things. The Chinese secretary offered kind words of support towards Putin himself and expressed confidence that he would certainly be able to defend his mandate in next year’s elections, while Putin himself has not even announced his candidacy.
Unveiling CVE-2023-3519 : Citrix ADC & Gateway Vulnerability Analysis
CVE-2023-3519 represents a grave security threat targeting Citrix ADC and Citrix Gateway devices. These products are widely deployed for load balancing and remote access, making them attractive targets for cybercriminals, seeking to exploit the unauthenticated remote code execution vulnerability
CYFIRMA Industry Report : MANUFACTURING
Welcome to CYFIRMA infographic industry report, where we delve into the external threat landscape of the manufacturing industry over the past three months. This report provides valuable insights and data-driven statistics, delivering a concise analysis of attack campaigns, phishing telemetry, and ransomware incidents targeting the manufacturing industry. We aim to present an industry-specific? overview in a convenient, engaging, and informative format.?
领英推荐
Ransomware of the Week
The CYFIRMA Research and Advisory Team has identified recent updates of the Akira ransomware during its monitoring of various underground forums as part of the Threat Discovery Process.?
Akira’s ransomware operation is targeting corporate networks globally. While another ransomware named Akira was released in 2017, there is no evidence suggesting that the current Akira ransomware operations are connected to it.
Trending Malware of the Week
Researchers have recently discovered a new, fully undetected Android banking trojan called MMRat, which has been targeting mobile users in Southeast Asia since late June 2023. MMRat has the ability to seize user input and screen content and can manipulate victim devices remotely to execute bank fraud. It employs a unique custom command-and- control protocol using protocol buffers (Protobuf), an open-source data format. This feature, which is rarely seen in Android banking trojans, enhances its performance during the transfer of large volumes of data.
CYFIRMA is a?threat?discovery?and cyber-intelligencecompany with the world’s first platform that can deliver predictive cyber-intelligence. We combine cyber-intelligence with attack surface discovery and digital risk protection to deliver early warning, personalized, contextual, outside-in, and multi-layered insights. We have built the next generation of AI-powered threat intelligence platform called External Threat Landscape Management (ETLM) to provide cyber defenders with the hacker’s view to help clients prepare for impending attacks.
SCHEDULE A DEMO?HERE
Visit?www.cyfirma.com
Message sent by CYFIRMA at 6 Raffles Quay, Level 16 S(048580), Singapore, Singapore.