Threat actors carried out a sophisticated identity attack by luring victims to a bogus KeePass password manager download site. After installing the malicious software, the attackers downloaded and launched a Cobalt Strike tool for command-and-control operations, exporting the existing KeePass password database. The attackers, linked to Black Basta, encrypted VMware ESXi datastores, causing the VMs to fail. The incident underlines the need for users to verify software sources and the risks of over-reliance on credentials.
M&S expected to reveal impact of cyber attack disruption – Perspective Media
M&S is anticipated to disclose the effects of a recent cyber attack that disrupted its operations. The company aims to provide insights into the incident’s
