Targeted attack on industrial enterprises and public institutions

Event ID 1520 UUID 28219fd4-56f3-470c-90ae-bdaeb006502e  Creator org ICS-CSIRT.io Owner org LUNCHBOX Creator user admin@admin.test Protected Event (experimental)   Event is in unprotected mode. Tags tlp:whitex dhs-ciip-sectors:DHS-critical-sectors=”government-facilities”x    Date 2022-08-12 Threat Level High Analysis Completed Distribution All communities    Published Yes 2022-08-17 17:21:11 #Attributes 190 (0 Objects) First recorded change 2022-08-12 22:46:15 Last change 2022-08-12 23:27:40 Modification map Sightings 0 (0) – … Read more

OSINT – Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine

Event ID 1250 UUID 3410ad13-ef34-48c9-bc6f-b1b111a30e06  Creator org CIRCL Owner org Creator user admin@admin.test Protected Event (experimental)   Event is in unprotected mode. Tags type:OSINTx osint:lifetime=”perpetual”x tlp:whitex    Date 2022-06-23 Threat Level Medium Analysis Completed Distribution All communities    Published Yes 2022-08-17 17:18:47 #Attributes 101 (10 Objects) First recorded change 2022-06-23 13:08:58 Last change 2022-06-23 13:24:07 Modification map Sightings 0 (0) – restricted … Read more

ALERT! Very Active PHISHING CAMPAIGN still alive targeting Dropbox Users

I received the link via e-mail but also found it online through some redirects and a dropbox typeo domain name. The images and page look spot on ….but if you look at the URI like you should you’ll notice right away we got some problems here! http://glabalinvestment.tk/cost/DROP1/casts/ The campaign is stealing your Gmail, Yahoo, MSN, … Read more