#social-engineering — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #social-engineering, aggregated by home.social.
-
📬 Scattered Spider: Verhaftet wegen Windows?
#Cyberangriffe #Rechtssachen #digitaleForensik #FBI #GlobalDeviceIdentifier #MicrosoftGDID #PeterStokes #Ransomware #ScatteredSpider #socialengineering #SupersedingCriminalComplaint #Windows‑Telemetrie https://sc.tarnkappe.info/c9f42a -
📬 Scattered Spider: Verhaftet wegen Windows?
#Cyberangriffe #Rechtssachen #digitaleForensik #FBI #GlobalDeviceIdentifier #MicrosoftGDID #PeterStokes #Ransomware #ScatteredSpider #socialengineering #SupersedingCriminalComplaint #Windows‑Telemetrie https://sc.tarnkappe.info/c9f42a -
What Is the BabaDeda Loader? Analysis of a New ClickFix Malware Campaign.
The BabaDeda loader family has undergone significant advancements in its capabilities, particularly in stealth, evasion, and payload flexibility. Discovered during April 2026, this evolved framework continues to conceal malicious payloads within seemingly legitimate installer packages while expanding its functionality. The attack methodology begins with a social engineering exploit known as ClickFix, which encourages users to execute commands via trusted operating system utilities. This initial step transitions into a sophisticated multi-stage loader that employs several tactics, including hidden PowerShell commands, in-memory shellcode, DLL sideloading, and external payload storage.
Pulse ID: 6a47b2cc64d3d9241377df01
Pulse Link: https://otx.alienvault.com/pulse/6a47b2cc64d3d9241377df01
Pulse Author: AlienVault
Created: 2026-07-03 13:02:04Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #ICS #InfoSec #Malware #OTX #OpenThreatExchange #PowerShell #RAT #Rust #ShellCode #SideLoading #SocialEngineering #bot #AlienVault
-
What Is the BabaDeda Loader? Analysis of a New ClickFix Malware Campaign.
The BabaDeda loader family has undergone significant advancements in its capabilities, particularly in stealth, evasion, and payload flexibility. Discovered during April 2026, this evolved framework continues to conceal malicious payloads within seemingly legitimate installer packages while expanding its functionality. The attack methodology begins with a social engineering exploit known as ClickFix, which encourages users to execute commands via trusted operating system utilities. This initial step transitions into a sophisticated multi-stage loader that employs several tactics, including hidden PowerShell commands, in-memory shellcode, DLL sideloading, and external payload storage.
Pulse ID: 6a47b2cc64d3d9241377df01
Pulse Link: https://otx.alienvault.com/pulse/6a47b2cc64d3d9241377df01
Pulse Author: AlienVault
Created: 2026-07-03 13:02:04Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #ICS #InfoSec #Malware #OTX #OpenThreatExchange #PowerShell #RAT #Rust #ShellCode #SideLoading #SocialEngineering #bot #AlienVault
-
You Are Being Primed to Accept #Fascism (and don't even realize it)
#RevolutionaryTH0T #Capitalism #Propaganda #Ideology #UsVersusThem #SocialEngineering
-
Learn everything you need to know about Social Engineering via these 62 free HackerNoon blog posts. https://hackernoon.com/62-blog-posts-to-learn-about-social-engineering #socialengineering
-
Learn everything you need to know about Social Engineering via these 62 free HackerNoon blog posts. https://hackernoon.com/62-blog-posts-to-learn-about-social-engineering #socialengineering
-
📬 GTA 6 Early Access: Fake-Webseiten locken Fans in Krypto-Falle
#Gaming #ITSicherheit #BankingTrojaner #Cybercrime #DLLSideloading #FakeWebseiten #GTA6EarlyAccess #KryptoZahlungen #Malware #Phishing #Scam #socialengineering https://sc.tarnkappe.info/8f96be -
📬 GTA 6 Early Access: Fake-Webseiten locken Fans in Krypto-Falle
#Gaming #ITSicherheit #BankingTrojaner #Cybercrime #DLLSideloading #FakeWebseiten #GTA6EarlyAccess #KryptoZahlungen #Malware #Phishing #Scam #socialengineering https://sc.tarnkappe.info/8f96be -
Once, during an #awareness session, I brought a jar into the room.
One of those old-school glass jars with a metal lid.
I put it on the table and asked the executives (not the CISOs) to drop a poker chip inside.
Yes, poker chips. Don’t laugh. That’s what I had.
The value of each chip was supposed to reflect two things: perceived risk and willingness to spend.
At the beginning, the jar looked miserable.
Two or three 50s.
One brave 500.
Fewer than ten 100s.Then came lunch.
Paid for, obviously.
But lunch was also the exercise.Heavy #socialengineering. Casual conversation. Names, routines, vendors, habits, internal friction, travel plans, tools, weak points, ego, trust.
Then the last two hours began.
Real risk demonstration.#spearphishing built with information collected during lunch.
Fake WhatsApp chats after recon.
#OSINT before the session even restarted.
QR codes everywhere.Then we talked about recovery costs.
Regulatory fines.
Production downtime.
Loss of trust.
Reputational damage.
The unpleasant difference between “unlikely” and “not impossible”.And, magically, the jar filled up with 500 and 1000 chips.
You don’t fucking say.
My #Decoded for #Baited: https://blog.baited.io/2026/cost-of-phishing-shrinking-budgets/
-
Once, during an #awareness session, I brought a jar into the room.
One of those old-school glass jars with a metal lid.
I put it on the table and asked the executives (not the CISOs) to drop a poker chip inside.
Yes, poker chips. Don’t laugh. That’s what I had.
The value of each chip was supposed to reflect two things: perceived risk and willingness to spend.
At the beginning, the jar looked miserable.
Two or three 50s.
One brave 500.
Fewer than ten 100s.Then came lunch.
Paid for, obviously.
But lunch was also the exercise.Heavy #socialengineering. Casual conversation. Names, routines, vendors, habits, internal friction, travel plans, tools, weak points, ego, trust.
Then the last two hours began.
Real risk demonstration.#spearphishing built with information collected during lunch.
Fake WhatsApp chats after recon.
#OSINT before the session even restarted.
QR codes everywhere.Then we talked about recovery costs.
Regulatory fines.
Production downtime.
Loss of trust.
Reputational damage.
The unpleasant difference between “unlikely” and “not impossible”.And, magically, the jar filled up with 500 and 1000 chips.
You don’t fucking say.
My #Decoded for #Baited: https://blog.baited.io/2026/cost-of-phishing-shrinking-budgets/
-
DATE: July 2, 2026 at 04:57PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
How #RenownHealth Is Reshaping Its Digital ID Strategy:
#Nevada Hospital System #CISO Steven Ramirez Shares Modernization Efforts https://t.co/2Y5EiACcIWHere are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: July 2, 2026 at 04:57PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
How #RenownHealth Is Reshaping Its Digital ID Strategy:
#Nevada Hospital System #CISO Steven Ramirez Shares Modernization Efforts https://t.co/2Y5EiACcIWHere are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
A single RedLine C2 pivots into a maritime spear-phishing cluster and attacker-owned infrastructure.
An investigation beginning with a single RedLine Stealer C2 server from VMRay UniqueSignal evolved into uncovering a targeted Business Email Compromise campaign against South Korean maritime infrastructure. The analysis started with IP 194.156.79.122 on port 55615, leveraging fingerprinting techniques through FOFA and VirusTotal to identify additional C2 infrastructure. Pivoting through communicating files revealed spear-phishing emails targeting Kangrim Heavy Industries, a major South Korean marine boiler manufacturer. The campaign delivered Formbook malware through impersonated maritime supply chain companies. Further infrastructure analysis identified seven fraudulent domains hosted on TheHost LLC infrastructure, utilizing similar naming patterns and TLS certificates. The attack demonstrates sophisticated BEC tactics combining malware delivery with social engineering, mimicking legitimate business correspondence within the maritime shipping sector.
Pulse ID: 6a464b96bef17724be5668a0
Pulse Link: https://otx.alienvault.com/pulse/6a464b96bef17724be5668a0
Pulse Author: AlienVault
Created: 2026-07-02 11:29:26Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #Email #FormBook #ICS #InfoSec #Korea #Malware #Mimic #OTX #OpenThreatExchange #Phishing #RAT #RedLine #RedlineStealer #Rust #SocialEngineering #SouthKorea #SpearPhishing #SupplyChain #TLS #VirusTotal #bot #AlienVault
-
A single RedLine C2 pivots into a maritime spear-phishing cluster and attacker-owned infrastructure.
An investigation beginning with a single RedLine Stealer C2 server from VMRay UniqueSignal evolved into uncovering a targeted Business Email Compromise campaign against South Korean maritime infrastructure. The analysis started with IP 194.156.79.122 on port 55615, leveraging fingerprinting techniques through FOFA and VirusTotal to identify additional C2 infrastructure. Pivoting through communicating files revealed spear-phishing emails targeting Kangrim Heavy Industries, a major South Korean marine boiler manufacturer. The campaign delivered Formbook malware through impersonated maritime supply chain companies. Further infrastructure analysis identified seven fraudulent domains hosted on TheHost LLC infrastructure, utilizing similar naming patterns and TLS certificates. The attack demonstrates sophisticated BEC tactics combining malware delivery with social engineering, mimicking legitimate business correspondence within the maritime shipping sector.
Pulse ID: 6a464b96bef17724be5668a0
Pulse Link: https://otx.alienvault.com/pulse/6a464b96bef17724be5668a0
Pulse Author: AlienVault
Created: 2026-07-02 11:29:26Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #Email #FormBook #ICS #InfoSec #Korea #Malware #Mimic #OTX #OpenThreatExchange #Phishing #RAT #RedLine #RedlineStealer #Rust #SocialEngineering #SouthKorea #SpearPhishing #SupplyChain #TLS #VirusTotal #bot #AlienVault
-
Browser-Only Ransomware: From LLM Hallucinations to a Practical Attack Technique
Check Point Research discovered a novel browser-native ransomware technique that emerged from AI-generated code attributed to DeepSeek. The attack leverages the File System Access API in Chromium browsers to encrypt files without requiring native payloads, exploits, or app installations. A malicious sample disguised as an AI image upscaler was analyzed, revealing how LLMs can connect theoretical platform risks to practical attack workflows. The technique is particularly concerning on Android, where Chrome allows web pages to access photo directories after user approval through legitimate permission prompts. By using social engineering with a fake AI enhancement tool, attackers can persuade victims to grant folder-level access, enabling file exfiltration and encryption entirely within the browser. This demonstrates how frontier AI models can autonomously design novel attack chains by reasoning across existing knowledge.
Pulse ID: 6a4500ffd044499efcd70db1
Pulse Link: https://otx.alienvault.com/pulse/6a4500ffd044499efcd70db1
Pulse Author: AlienVault
Created: 2026-07-01 11:58:55Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Android #Browser #CheckPoint #Chrome #CyberSecurity #Edge #Encryption #InfoSec #OTX #OpenThreatExchange #RAT #RansomWare #SocialEngineering #bot #AlienVault
-
Browser-Only Ransomware: From LLM Hallucinations to a Practical Attack Technique
Check Point Research discovered a novel browser-native ransomware technique that emerged from AI-generated code attributed to DeepSeek. The attack leverages the File System Access API in Chromium browsers to encrypt files without requiring native payloads, exploits, or app installations. A malicious sample disguised as an AI image upscaler was analyzed, revealing how LLMs can connect theoretical platform risks to practical attack workflows. The technique is particularly concerning on Android, where Chrome allows web pages to access photo directories after user approval through legitimate permission prompts. By using social engineering with a fake AI enhancement tool, attackers can persuade victims to grant folder-level access, enabling file exfiltration and encryption entirely within the browser. This demonstrates how frontier AI models can autonomously design novel attack chains by reasoning across existing knowledge.
Pulse ID: 6a4500ffd044499efcd70db1
Pulse Link: https://otx.alienvault.com/pulse/6a4500ffd044499efcd70db1
Pulse Author: AlienVault
Created: 2026-07-01 11:58:55Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Android #Browser #CheckPoint #Chrome #CyberSecurity #Edge #Encryption #InfoSec #OTX #OpenThreatExchange #RAT #RansomWare #SocialEngineering #bot #AlienVault
-
DATE: July 1, 2026 at 06:01PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@aflac_japan: Hack Detected Last Week Affects Nearly 4.4M: Incident Is Insurance Giant's Second Major #DataBreach Since June 2025 https://t.co/I826SyFKO6 @aflac #aflac
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: July 1, 2026 at 06:01PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@aflac_japan: Hack Detected Last Week Affects Nearly 4.4M: Incident Is Insurance Giant's Second Major #DataBreach Since June 2025 https://t.co/I826SyFKO6 @aflac #aflac
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: July 1, 2026 at 05:26PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Workers Withdraw Claims in #Stryker Wiper #CyberAttack Lawsuit https://t.co/9FIxg2VvUN
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
#FBI-Warnung: Russischer Geheimdienst sieht es auf #Messenger-Backup-Keys ab | Security https://www.heise.de/news/FBI-Warnung-Russischer-Geheimdienst-sieht-es-auf-Messenger-Backup-Keys-ab-11347302.html #CyberCrime #SocialEngineering #phishing #Russland 🇷🇺 #Russia 🇷🇺
-
#videoilike #videoienjoyed
https://www.youtube.com/watch?v=dNGUiWKn6Qs#KevinMitnick #kevin_mitnick #hack #hacker #docu #mindhack #SocialEngineering #social_engineering #magic #Magician #tricks #computer #computer_art #phreaker #telephone #fruad #login #80s #programmer #security #securityRelated #wargames #mystery #dec #backdor #ccc #arpanet
-
DATE: June 30, 2026 at 05:36PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
#DICOM Toolkit Bugs Raise #MedicalImaging #Security Risks https://t.co/eMPITZIzmo
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: June 30, 2026 at 05:36PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@Medtronic Notifying Patients Affected by Data Theft Hack https://t.co/yrECPWZL47 #HIPAA
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
DATE: June 30, 2026 at 05:33PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
#Medtronic Notifying Patients Affected by Data Theft Hack: #Ransomware Gang #ShinyHunters Gang Claimed It Stole 9M Records From #MedicalDevice Maker https://t.co/yrECPWZL47
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Chromium extension uses AI‑related branding to redirect browser search
Microsoft Threat Intelligence identified a malicious Chromium extension spoofing Perplexity AI to deceive users into installation. The extension's primary objective involves search traffic interception and data collection through Manifest Version 3 capabilities and declarativeNetRequest rules. It routes both full search queries and real-time keystrokes through attacker-controlled infrastructure hosted on a typosquatted domain before redirecting to legitimate search providers. The extension overrides browser default search settings, captures user input at keystroke-level, and uses suspicious permissions inconsistent with legitimate AI assistants. The threat demonstrates how actors operationalize AI branding as social engineering vectors. Google removed the extension following responsible disclosure. Organizations should strengthen user awareness training and implement layered security strategies to detect similar threats.
Pulse ID: 6a42d0b89159dccad1ff7879
Pulse Link: https://otx.alienvault.com/pulse/6a42d0b89159dccad1ff7879
Pulse Author: AlienVault
Created: 2026-06-29 20:08:24Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Browser #CyberSecurity #Google #InfoSec #Microsoft #OTX #OpenThreatExchange #RAT #RCE #SocialEngineering #Troll #bot #AlienVault
-
DATE: June 29, 2026 at 05:29PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
How #CloudSecurity Risks Grow With Home-Based #Healthcare https://t.co/0BuNRLzM6i
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
⚠️ UAE warns abandoned accounts become attack surfaces
The #UAE Cybersecurity Council urged citizens to erase unused digital accounts, warning dormant profiles retain personal data that can be exploited for #identitytheft and #socialengineering.
🔗 read more: thecyberexpress.com/uae-cybersec... -
📬 SIM-Swap-Bande zerschlagen: Millionenraub an Kryptobörsen endet mit Festnahmen
#Cyberangriffe #ITSicherheit #CBZC #Cyberkriminalität #Geldwäsche #Kryptobörsen #Kryptodiebstahl #Kryptowährungen #SIMSwap #SIMSwapping #socialengineering #ZachXBT https://sc.tarnkappe.info/8b8d44 -
DATE: June 26, 2026 at 05:08PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
@HHSGov Agencies Flesh Out Priorities for #Healthcare #AI:
Coordinated #OneHHS AI Governance, Implementation, Guidance Efforts Under Way https://t.co/fGtoR8n4iZHere are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Millenium: A RAT Rewritten, A Threat Multiplied
Group-IB analyzes Millenium RAT version 4.*, a remote access trojan that has undergone significant architectural changes from .NET to native C++, while continuing to leverage Telegram Bot API for command and control without requiring dedicated server infrastructure. The malware is distributed as Malware-as-a-Service by developer 'ShinyEnigma' for $50-90 USD. Active exploitation campaigns are conducted by threat actor cluster 'Y2K Operators' using social engineering tactics including fraudulent utilities, hacking toolkits, software cracks, gaming lures, and trojanized cybercrime tools. The trojan enables exfiltration of sensitive browser and system data, screenshot and audio capture, keylogging, and arbitrary executable downloads. Over 62,000 compromised endpoints across more than 160 countries have been identified, with 39,730 infections occurring in Q1 2026 alone, demonstrating accelerating infection rates.
Pulse ID: 6a3d76e592eaea08a66ad337
Pulse Link: https://otx.alienvault.com/pulse/6a3d76e592eaea08a66ad337
Pulse Author: AlienVault
Created: 2026-06-25 18:43:48Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Browser #CyberCrime #CyberSecurity #Endpoint #GroupIB #ICS #InfoSec #Malware #MalwareAsAService #NET #OTX #OpenThreatExchange #RAT #RemoteAccessTrojan #SocialEngineering #Telegram #Trojan #bot #AlienVault
-
DATE: June 25, 2026 at 04:36PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Feds Expand #AI to Combat #Healthcare #Fraud https://t.co/yanjC9Nf7T @HHSGov @DOJCrimeDiv #medicare #medicaid
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Plant a decoy persona, such as a fake LinkedIn profile or an unused directory account, to catch attackers reaching for what they think is real. The decoy has no production use, so any interaction is a high-confidence alert.
-
Payouts King Ransomware Initial Access Broker Deploys New Edgecution Malware
An initial access broker linked to Payouts King ransomware is deploying Edgecution, a sophisticated malware utilizing a malicious Microsoft Edge browser extension. The attack begins through social engineering via Microsoft Teams, impersonating IT staff and directing victims to fake Microsoft websites offering supposed Outlook updates. Edgecution comprises two components: a browser extension that communicates with command-and-control servers via websockets, and a Python-based backdoor. The extension abuses Chrome native messaging protocol to escape browser sandbox restrictions, enabling direct host access. This allows attackers to manipulate the filesystem, launch processes, and execute arbitrary code. The malware operates in a headless browser, remaining invisible to users. Deployment methods include AutoHotKey scripts, Windows batch scripts, and PowerShell scripts. The Python backdoor supports various commands including system information collection, filesystem access, and arbitrary code execution.
Pulse ID: 6a3ab74e2728d85de0799971
Pulse Link: https://otx.alienvault.com/pulse/6a3ab74e2728d85de0799971
Pulse Author: AlienVault
Created: 2026-06-23 16:41:50Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#BackDoor #Browser #Chrome #CyberSecurity #Edge #InfoSec #Malware #Microsoft #MicrosoftEdge #MicrosoftTeams #OTX #OpenThreatExchange #Outlook #PowerShell #Python #RAT #RansomWare #SocialEngineering #Windows #bot #AlienVault
-
DATE: June 24, 2026 at 04:05PM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
#Stryker Seeks to Dismiss Class Action Lawsuit in #Cyberattack https://t.co/7OeJOMmr6B #HIPAA #PII #PHI
Here are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering
-
Observed activity associated with Sidewinder APT. Lure document: No.9374.docx, 64f2681ad0940e6c2c9c76e6834117bf. Observed C2 infrastructure: update[.]ms-office[.]app
Recent activity has been detected linked to the Sidewinder advanced persistent threat group. The campaign utilizes a malicious document named No.9374.docx with the hash value 64f2681ad0940e6c2c9c76e6834117bf as a lure mechanism. The infrastructure supporting command and control operations includes the domain update[.]ms-office[.]app. This observation indicates ongoing operations by Sidewinder, a threat actor known for targeting specific regions and sectors. The use of weaponized documents and deceptive domains mimicking legitimate Microsoft services demonstrates continued sophisticated social engineering tactics employed by this group.
Pulse ID: 6a3b4e5dc7cef5136c49c364
Pulse Link: https://otx.alienvault.com/pulse/6a3b4e5dc7cef5136c49c364
Pulse Author: AlienVault
Created: 2026-06-24 03:26:21Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #ICS #InfoSec #MaliciousDocument #Microsoft #Mimic #OTX #Office #OpenThreatExchange #RAT #Sidewinder #SocialEngineering #bot #AlienVault
-
DATE: June 24, 2026 at 07:41AM
SOURCE: HEALTHCARE INFO SECURITYDirect article link at end of text block below.
Why Is an AI Image Company Building a Body Scanner?
The #AI Image Company Plans a Consumer Rollout, With No @FDA Clearance Yet
https://t.co/zN3m7PWzSeHere are any URLs found in the article text:
Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"
-------------------------------------------------
Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org
Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.
-------------------------------------------------
#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering