Hazy Hawk, a threat actor, has been exploiting misconfigurations in abandoned cloud resources, including Amazon S3 buckets and Microsoft Azure endpoints, to hijack domains of prominent organizations. The hijacked domains are used to host URLs directed to scams and malware. The attacker has also victimized several government agencies, universities, and international corporations. Hazy Hawk’s actions are mainly targeted towards identifying vulnerable domains and using them for fraudulent ads and operations.
More_Eggs Malware Exploits Job Application Emails to Deliver Malicious Payloads
The More_Eggs malware has seen a comeback, becoming a significant threat to corporations, targeting HR departments with job applications carrying malicious contents. Operated by the
