Scattered Spider, a threat group behind a series of high-profile cyber attacks, uses sophisticated social engineering attacks. The group has targeted Okta, MGM Resorts and Caesar’s Entertainment, causing prolonged disruptions and $100m in losses for MGM. Scattered Spider impersonates IT personnel and uses SIM swapping attacks to acquire sensitive user data. The group also uses ransomware to extort victims and often threatens to release sensitive data. The FBI and CISA put out an advisory warning businesses to maintain offline backups and enforce phishing-resistant multifactor authentication.
Rapid7 Labs Identifies Malware Installer Targeting Chinese and Vietnamese Users
Rapid7 Labs has discovered a highly evasive malware installer called CleverSoar, which targets Chinese and Vietnamese-speaking users by deploying and protecting several malicious elements including
