Hybrid war, cyber gangbusting, and, of course, patches.

New Lazarus Group activity discovered. Chinese operators intrude into infrastructure. Cyber action connected with the war between Hamas and Israel. Cyber action in Russia’s hybrid war against Ukraine. Apache Struts vulnerability exploited in the wild. USPS impersonation. 5Ghoul: a chip risk. Autofill risk. MrAnon infostealer and a malicious booking app. BatLoader and FakeBat. Holiday fraud services for sale in the C2C market. BazarCall phishes with Google Forms. New threat actor discovered: "GambleForce." Malicious ads associated with Zoom. Read More

The CyberWire

December 16, 2023

Hybrid war, cyber gangbusting, and, of course, patches.

New Lazarus Group activity discovered. Chinese operators intrude into infrastructure. Cyber action connected with the war between Hamas and Israel. Cyber action in Russia’s hybrid war against Ukraine. Apache Struts vulnerability exploited in the wild. USPS impersonation. 5Ghoul: a chip risk. Autofill risk. MrAnon infostealer and a malicious booking app. BatLoader and FakeBat. Holiday fraud services for sale in the C2C market. BazarCall phishes with Google Forms. New threat actor discovered: “GambleForce.” Malicious ads associated with Zoom. Read More

The CyberWire

About The Author

See author's posts

Related Stories

$1M WhatsApp Hack Flops: Only Low-Risk Bugs Disclosed to Meta After Pwn2Own Withdrawal

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

Microsoft Issues Emergency Patch for Actively Exploited Critical WSUS Vulnerability