Millions of ChatGPT Accounts Hacked, Foreign Ministries Under Attack, Ukrainian Govt. Email Servers Hacked - Find More

We are yet again back with this week's new edition of Threat Digest, bringing you some of the most intrusive bytes across the threat landscape curated by our team at SecureBlink Threat Intel Lab.

UPS Data Breach Exposes Customer Info Fueling SMS Phishing Attacks.?

UPS Canada, in its recent communication titled "Fighting phishing and smishing - an update from UPS," initially appeared to be a warning regarding phishing threats. However, careful examination revealed that this communication was, in fact, a data breach notification. UPS discreetly disclosed that it had received reports of SMS phishing messages containing customers' names and address information…?

Details?

Flea Group Exploits Graphican Backdoor for Targeting Foreign Ministries.?

A Chinese hacker group known as 'Flea' has once again set its sights on foreign ministries, focusing mainly on American ministries. This campaign, which took place from late 2022 to early 2023, saw the group utilizing a new backdoor named Backdoor.Graphican. The attacks targeted not only ministries in the Americas but also a government finance department and a corporation selling products in Central and South America. Interestingly, there was also a victim from a European country, which stands as an outlier in this campaign.

Details?

Over 12K Indian ChatGPT Users' Credentials Sold on Dark Web Marketplace.?

Cybersecurity experts have recently made a shocking discovery revolving around ChatGPT. They have identified 101,134 devices infected with info stealers that contained compromised ChatGPT account credentials. These compromised credentials were found in the info-stealing malware logs traded on illicit dark web marketplaces over the past year.

Details?

MULTI#STORM: New JavaScript-Based Phishing Attack Targeting India & U.S.?

MULTI#STORM, a new JavaScript-based phishing attack campaign, has emerged, leveraging a Python-based loader malware. This campaign disguises itself as OneDrive utilities and employs sophisticated techniques to drop multiple Remote Access Trojan (RAT) payloads.

Details

BlueDelta: Ukrainian Govt. Email Servers Hacked to Continue Espionage.?

Ukraine's Computer Emergency Response Team (CERT-UA) and Recorded Future's threat research division, Insikt Group, a campaign targeting high-profile entities across Ukraine, have been identified. This campaign, linked to the Russian APT28 hackers, also known as BlueDelta, leveraged news about Russia's war against Ukraine to launch spearphishing attacks aimed at…?

Details

7-Layer DDoS Attacks Cripples Microsoft's Azure, Outlook, & OneDrive.?

Microsoft has confirmed that the recent outages experienced by Azure, Outlook, and OneDrive web portals resulted from Layer 7 DDoS attacks launched against their services. These attacks have been attributed to a threat actor known as Storm-1359, which identifies itself as Anonymous Sudan. The outages occurred in early June, with Outlook.com's web portal being targeted on June 7th, OneDrive on June 8th, and the Microsoft Azure Portal on June 9th.

Details

That's a wrap for this week's Threat Digest until next time with a brand new edition.

Experience the New Dimension of Application Security with Threatspy

Stay tuned for more insightful updates on #cybersecurity.

Have a secure weekend!