Threat

Attackers Abuse Velociraptor Tool to Deploy VS Code for C2 Tunneling

Cybersecurity experts have uncovered a recent attack where unknown adversaries misused Velociraptor, an open-source digital forensic and endpoint monitoring tool, to further their malicious activities. This case highlights the ongoing abuse of legitimate software by threat actors to avoid detection. According to a report by the Sophos Counter Threat Unit Research Team, the attackers utilized […]

Attackers Abuse Velociraptor Tool to Deploy VS Code for C2 Tunneling Read More »

add a heading (13)

CISA Guide to Hunt and Defend Against Chinese Hackers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the NSA, FBI, and several international partners, has released a major cybersecurity advisory exposing a global espionage campaign conducted by state-sponsored hackers from the People’s Republic of China (PRC). These operations are targeting critical infrastructure networks around the world. The 37-page document, “Countering Chinese

CISA Guide to Hunt and Defend Against Chinese Hackers Read More »

ClickTok Campaign Uses 10,000+ Malicious Domains to Target TikTok Shop Users

A new large-scale cybercrime operation known as ClickTok has surfaced, aiming at TikTok Shop users through a complex mix of phishing and malware distribution. Security researchers have discovered over 10,000 malicious domains involved in stealing login credentials and deploying spyware. The campaign marks a significant rise in e-commerce cyberattacks, leveraging the popularity of TikTok’s in-app

ClickTok Campaign Uses 10,000+ Malicious Domains to Target TikTok Shop Users Read More »