Echelon Stealer: The Open Source Malware
Echelon Stealer is an infostealer malware that was first discovered in 2018 and is still active. Currently shared as an open-source tool on GitHub, Echelon
Ferrari avoids deepfake scam! An executive unmasks the CEO’s fake audio messages
In an incident earlier this month, a Ferrari executive found himself receiving unusual messages that appeared to come from the company’s CEO, Benedetto Vigna. The
The Ransomware Group Ransomexx Claims Attack on Liteon
On July 26, 2024, the ransomware group Ransomexx publicly claimed responsibility for an attack against Liteon, a giant in the electronic components sector. This attack
A Threat Actors Posts Update on Luxottica’s 2021 Data Breach
Recently, a threat actor in a clandestine forum posted an update on the 2021 data breach concerning the giant Luxottica, one of the world’s largest
The dark side of the Windows Command Prompt: how malicious commands can replace legitimate ones
If you choose to read this article, please note that it will not discuss a vulnerability or a bug, but rather an intended behavior of
RHC interviews RADAR and DISPOSSESSOR: “When it comes to security, the best defense is a good offense.”
In our usual underground analysis activities, we came into contact with the cyber gang DISPOSSESSOR, which came to attention in February 2024 in the cyber
Herm1t Interview – From VX Heaven to the war gates!
Alessio Stefan - November 4th, 2024
This is the story of Herm1t, founder of VX-Heaven, hacker - currently active in protecting Ukraine from 2014 - and founder of RUH8 in fall 2015, told by means of...
Israeli Air Force Data Sale: A Suspected Leak Puts Sensitive Information at Risk
Pietro Melillo - November 2nd, 2024
Recently, a cyber threat actor known as EagleStrike posted an announcement on a dark web forum, claiming to possess confidential data concerning the Israeli Air Force (IAF). According to the...
IBM Hacked? Threat Actor ‘888’ Reveals Thousands of Employees’ Data Leak!
Luca Galuppi - October 31st, 2024
Recently, the notorious Threat Actor, identified by the nickname 888 , claimed to have breached IBM systems and stolen personal data belonging to the company's employees. The leak, dated October 2024, allegedly resulted in the compromise...
Fortinet Issues Bulletin for Critical 9.8 Bug on FortiManager under Active Exploitation
Redazione RHC - October 24th, 2024
Recently, Fortinet disclosed a critical vulnerability, identified as CVE-2024-47575, affecting FortiManager. This is a missing authentication vulnerability for critical functions [CWE-306] in the FortiManager fgfmd daemon, which could allow an...
Sign up for the newsletter