InfoSecBulletin Cybersecurity for mankind
Since 2019, the notorious Clop group, also known as TA505, has been wreaking havoc by distributing ransomware. Over 3,000 organizations in the United States and 8,000 globally have been targeted by the group.
Furthermore, the group functions as an initial access broker, offering compromised networks to other groups. In addition, they operate a specialized botnet that is focused on carrying out financial fraud and phishing activities.
In addition to that, the group has successfully created three cutting-edge exploits and utilizes tailor-made webshells and malware toolkits in their sophisticated attacks. What sets them apart from other extortion groups is their advanced level of sophistication, which goes beyond the typical reliance on open-source tools.
According to the research KonBriefing research, Till now United States of America is the highest victimized country by MOVEit. 294 organizations of USA have been affected by MOVEit.
ALSO READ:
Canada 2nd largest airlines “WestJet” investigates cyberattack disrupting internal systems
By infosecbulletin
/ Sunday , June 15 2025
WestJet, Canada's second-largest airline, is looking into a cyberattack that has affected some internal systems during its response to the...
Read More
Paraguay 7.4 Million Citizen Records Leaked on Dark Web
By infosecbulletin
/ Saturday , June 14 2025
Resecurity found 7.4 million records of Paraguayan citizens' personal information leaked on the dark web today. Last week, cybercriminals attempted...
Read More
High-Severity Flaw in HashiCorp Nomad Allows Privilege Escalation
By infosecbulletin
/ Friday , June 13 2025
HashiCorp has revealed a critical vulnerability in its Nomad tool that may let attackers gain higher privileges by misusing the...
Read More
SoftBank: Over 137,000 personal info leaked
By infosecbulletin
/ Friday , June 13 2025
SoftBank has disclosed that personal information of more than 137,000 mobile subscribers—covering names, addresses, and phone numbers—might have been leaked...
Read More
Alert
Trend Micro Apex One Flaw Allow Attackers to Inject Malicious Code
By infosecbulletin
/ Friday , June 13 2025
Serious security vulnerabilities in Trend Micro Apex One could allow attackers to inject malicious code and elevate their privileges within...
Read More
Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Action
By infosecbulletin
/ Thursday , June 12 2025
Aim Labs discovered a zero-click AI vulnerability named “EchoLeak” in Microsoft 365 Copilot and reported several ways to exploit it...
Read More
Adobe Releases Patch Fixing 254 Vulnerabilities With High-Severity Security Gaps
By infosecbulletin
/ Wednesday , June 11 2025
On Tuesday, Adobe released security updates for 254 vulnerabilities in its software, mainly affecting Experience Manager (AEM). There are 254...
Read More
Alert
40,000 + live internet cameras exposed globally !
By infosecbulletin
/ Wednesday , June 11 2025
A new report from Bitsight reveals that over 40,000 internet-connected security cameras around the world are exposed, broadcasting live footage...
Read More
Microsoft patch Tuesday fix exploited zero-day and 65 vuls patched
By infosecbulletin
/ Wednesday , June 11 2025
Microsoft's June Patch Tuesday update has arrived, addressing 66 vulnerabilities across its product line. One of these flaws was actively...
Read More
84,000+ Roundcube instances vulnerable to actively exploited flaw
By infosecbulletin
/ Tuesday , June 10 2025
More than 84,000 Roundcube webmail installations are at risk due to CVE-2025-49113, a severe remote code execution (RCE) vulnerability that...
Read More
While Germany is the 2nd affected country with 33 organizational attack and Canada’s 22 organizations have been affected in the most sophisticated attack.
