InfoSecBulletin Cybersecurity for mankind
Researchers unveiled a new ransomware, called SEXi, that poses a threat to VMware ESXi servers. Additionally, it is believed to have scored its first victim which is a hosting provider.
Intel 471 reported a surge in smishing attacks from a group of threat actors, called The Com, which uses sophisticated social engineering tactics to target organizations in the telecommunications, IT, and industry sectors.
Hackers Target E-Commerce in Bangladesh, Sell order details on Dark Web
BCSI BLOG POST
SonicWALL Vulnerability Traded; threating for Corporate network in Bangladesh
Banking trojan Grandoreiro targeting about 1,500 banks over 60 countries
Australian gov.t warns of ‘large-scale ransomware data breach’
Patch Now: CISA Warns of Actively Exploited D-Link Router Vulnerabilities
New “Antidot” Banking Trojan disguised Fake Google Play Updates
CISA Published Encrypted DNS Implementation Guidance
Cyble Research
Transparent Tribe & SideCopy: A Cyber Alliance Targeting India
Recordedfuture report
Hackers Exploit GitHub to Spread Malware targeting operating systems
ALERT
CISA issued Seventeen Industrial Control Systems Advisories
Proofpoint’s Threat Research team identified a rise in the use of a new Latrodectus loader malware in campaigns throughout February and March. The malware is being distributed by the TA577 threat actor.
Sucuri researchers found a new variant of Magento Shoplift malware that executed a malicious script on a website to perform credit card skimming attacks and data theft.
NIST awarded nearly $3.6 million to 18 education and community organizations across 15 states in an effort to build the workforce needed to safeguard enterprises from cybersecurity threats.
