Proxyjacking allows attackers to sell unknowing victims' unused network bandwidth.
Akamai reports nearly 700,000 attacks with 27,000 of its customers being scanned for the vulnerability.
The main focus of Diicot’s attacks appears to support cryptojacking efforts but the group is also employing botnets and brute-force tactics for other purposes.
The threat actor created fake personas on Twitter for researchers at a non-existent security firm.
This newly discovered, global campaign indicates growing popularity for multi-stage adversary-in-the-middle tactics among threat actors.
A third-party audit reveals new MOVEit vulnerabilities, for which Progress Software has issued patches.
A new attack group leverages trusted relationships between partner organizations to bypass multifactor authentication.
The Kimsuky group is adept at building relationships at target organizations to more easily deliver malware and steal credentials.