PossibleThreat Articles – Articles for the experts…

Sophos MDR blocks and tracks activity from probable Iranian state actor “MuddyWater”

November 20, 2024 0 Comments atera, legitimate service abuse, muddywater, phishing, rmm, security operations, stac 1171, ta450, threat research

Credit to Author: gallagherseanm| Date: Wed, 20 Nov 2024 17:12:12 +0000

Sophos MDR has observed a new campaign that uses targeted phishing to entice the target to download a legitimate remote machine management tool to dump credentials. We believe with moderate confidence that this activity, which we track as STAC 1171, is related to an Iranian threat actor commonly referred to as MuddyWater or TA450. Earlier […]

MalwareBytes Security

“Sad announcement” email leads to tech support scam

November 20, 2024 0 Comments news, sad announcement, tech support scam, threats

People are receiving disturbing emails that appear to imply something has happened to their friend or family member.

Security Wired

Inside the Booming ‘AI Pimping’ Industry

November 20, 2024 0 Comments Security, Security / Privacy

Credit to Author: Jason Koebler, Emanuel Maiberg| Date: Wed, 20 Nov 2024 11:00:00 +0000

AI-generated influencers based on stolen images of real-life adult content creators are flooding social media.

Security Wired

Anyone Can Buy Data Tracking US Soldiers and Spies to Nuclear Vaults and Brothels in Germany

November 20, 2024 0 Comments politics / policy, Security, Security / National Security, Security / Privacy, Security / Security News

Credit to Author: Dhruv Mehrotra, Dell Cameron| Date: Wed, 20 Nov 2024 04:00:00 +0000

More than 3 billion phone coordinates collected by a US data broker expose the detailed movements of US military and intelligence workers in Germany—and the Pentagon is powerless to stop it.

Security Wired

Immigration Police Can Already Sidestep US Sanctuary City Laws Using Data-Sharing Fusion Centers

November 20, 2024 0 Comments politics / policy, Security, Security / Privacy, Security / Security News

Credit to Author: Lily Hay Newman| Date: Tue, 19 Nov 2024 10:00:00 +0000

Built to combat terrorism, fusion centers give US Immigration and Customs Enforcement a way to gain access to data that’s meant to be protected under city laws limiting local police cooperation with ICE.

MalwareBytes Security

Update now! Apple confirms vulnerabilities are already being exploited

November 20, 2024 0 Comments Apple, cve-2024-44308, cve-2024-44309, intel-based, news

Apple has released security updates that look especially important for Intel-based Macs because they are already being exploited in the wild.

MalwareBytes Security

AI Granny Daisy takes up scammers’ time so they can’t bother you

November 20, 2024 0 Comments AI, granny daisy, news, scammers

An Artificial Intelligence model called Daisy has been deployed to waste phone scammers’ time so they can’t defraud real people.

Independent Krebs Security

Fintech Giant Finastra Investigating Data Breach

November 19, 2024 0 Comments abyss0, breachforums, Data Breaches, finastra, ke-la.com, Latest Warnings, Ne'er-Do-Well News, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 20 Nov 2024 01:12:15 +0000

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of a potential breach after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company.

MalwareBytes Security