Authorities in North America and Europe are arresting users of the Smokeloader botnet, marking a shift in cybercrime enforcement. Following Operation Endgame in May 2024 that dismantled the Smokeloader infrastructure, this phase targets customers who bought access from Smokeloader’s pay-per-install service. The investigation is ongoing, with more actions expected. The operation involved agencies from several countries, coordinated by Europol and the Joint Cybercrime Action Taskforce.
Oracle Cloud leak leads CISA to issue warning about credential risks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued guidance on mitigating credential risks following a potential compromise of a legacy Oracle cloud environment. The
