CloudSEK

How Leaked Twitter API Keys Can be Used to Build a Bot Army

Social Media Nexus Spreads Color Prediction Games that Defraud Users

Generaly OTP Bot Setup for MFA Bypass Affecting P2P Services

Hacktivist Group DragonForce Actively Targeting Indian Entities, Shares an Exploit for a Critical Confluence Server Vulnerability CVE-2022-26134

Missing Endpoint Authentication in F5 BIG-IP Leads to Remote Code Execution

Tracking the Operators of the Newly Emerged BlueSky Ransomware

Indian Rail Coach Factory PII and Credentials Shared From Past Data Breaches

Analysis and Attribution of the Eternity Ransomware: Timeline and Emergence of the Eternity Group

Ransomware encrypts files, demands three good deeds to restore data 📰 Register

GoodWill ransomware forces victims to donate to the poor and provides financial assistance to patients in need

6 Indian origin cybersecurity startups that are redefining digital security landscape | 📰 YourStory

[Report] Cyber Threats Targeting the Global Education Sector on the Rise

CyberAttacks on Education Sector | 📰 GadgetsNow Report

[Blog] Detailed writeup on LAPSUS$ Cybercriminal Group who have compromised Microsoft and Okta

[Blog] Malicious Macros and Zone Identifier Alternate Data Stream Information Bypass

Phishing Scams - 📰 Bleeping Computers Report

Phishing Scams - 📰 TheHindu Report

Phishing Scams - 📰 TechWire Asia Report

Phishing Scams - 📰 ETCISO Report

Technical Analysis of The Hermetic Wiper Malware Used to Target Ukraine

Phishing Scams Targeting the Indian Electric Vehicle Industry on the Rise - Report

Technical Analysis of Code-Signed “Blister” Malware Campaign (Part 2)

Exposed HubSpot API Keys Compromise 1.6 Million Users’ Data

Growing Surge of Cybersecurity Challenges in Neobanking

Dangerous Android Permissions To Look Out For In Your Apps

Technical Analysis of Khonsari Ransomware Campaign Exploiting the Log4Shell Vulnerability

Emerging Threat Actor’s Phishing Services Could Potentially Impact Millions of Users Globally

Emotet 2.0: Everything you need to know about the new Variant of the Banking Trojan

Earn While you Learn Internship Program 🎓

Resurgence of DJVU/STOP Ransomware Strain in the Wild - PART 1

Resurgence of DJVU/STOP Ransomware Strain in the Wild - PART 2

Advanced Automated Social Engineering Bots: The High Tide of Social Engineering Bots and the Scammers Riding Them

Abysmal State of Global Critical Infrastructure Security - Report Download

The Shang-Chi Malware Campaign: Is your pirated copy of the summer blockbuster laced with a RAT? - BLOG

How Does k3d Knock Other Kubernetes Clusters Off Their Pedestals?

The Unabated Reign of ATM Hacking: The 2021 Rajasthan ATM Attack and the Proliferation of Novel ATM Hacking Tools and Techniques

Payment API Bungling Exposes Millions of Users’ Payment Data - THREATPOST

10 mobile apps using Razorpay payment gateway expose transaction keys

Exposed Payment Integration API Keys Imperil Millions of Users’ Transaction Details and PII

Home Ministry Proposes Ban on VPN Services: Should You Be Worried?

Gullible youths fall prey to online job scams

Making the Corporate to Startup Switch Work - Nistul Raj

Beat Compliance Fatigue With PrivacyTech

The Darkweb Crypto Lifecycle: How Cyber Criminals Misuse and Cash Out Crypto Funds

CloudSEK’s Selenium Grid Architecture and Data Acquisition

A Sales Junkie’s Playbook - Harpreet's Experience

Everything You Need to Know about the Pegasus Spyware

Kaseya VSA Supply Chain Ransomware Incident

Our PrivacyTech Thesis: Paving the Future - Omidyar Network Thesis

Global Cyber Threat Landscape Q2 2021

XVigil’s Fake Domain Finder: A Deep-dive on the Acquisition Component and Crawlers

Being a Security Analyst: At the Intersection of Research and Client Engagement - Charlton's Experience

Domino’s Breach and Nucleus Ransomware Attack: More Than Just Isolated Incidents?

Know everything about BeVigil - the420 Article.

Modern Underground Marketplaces and Digital Goods

Cring Ransomware Fortinet Attack Threat Intel Advisory

RDP, RDWEB, Citrix Access to Multiple Educational Institutions for Sale

VPN Access of Company with Annual Revenue of $15 Billion for Sale

Over a Million PII of Livpure Customers Leak on Cybercrime Forum - Threat Intelligence

Popular apps have vulnerabilities in how they connect to the cloud. At risk is users’ personal data - ET Article

Cloud Container Attack Tool (CCAT) and Cryptojacking

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys - HackerNews

This startup is changing the cybersecurity game - FortuneIndia

Three Quick Wins to Address in an Active Directory Environment

7 Tips to Optimize Website Performance and Improve Page Load Speed

Digital Brand Protection: A Game-changing Strategy for Online Brand Reputation

CloudSEK is part of the Gartner Peer Insights Customer First program for Security Threat Intelligence Products and Services

Gootloader Malware Threat Intel Advisory

My Career in AI Allows Me to Explore the Magic of Intelligent Machines - Shreyas Rawat

Broken Authentication Vulnerabilities | Knowledge Sharing

Phishing Attacks 101: Types of Phishing Attacks and How to Prevent Them

DSCI India`s AI & ML Cyber Capabilities #Report - Link to Download

DSCI India`s AI & ML Cyber Capabilities #ReportLaunch

The AI Development Lead Who Was Bitten by the Electricity Bug as a Kid

Osiris Banking Trojan Threat Intelligence Advisory

Top 10 Indian companies leveraging AI & analytics to manage cyber risks - IndiaAI

Redefining the Principles of Product Management

CloudSEK CTF Challenge #3

RBI Appoints Rahul Sasi as a Part of its Expert Panel Constituted to Assess the Risk of Unregulated Digital Lending

DoppelPaymer Ransomware Threat Intel Advisory

Zyxel Hardcoded Vulnerability Threat Intel Advisory

Threat Actor leaks ~1.5 Billion Records from Multiple Chinese Databases in Recent Spree

Cobalt Strike Malware Threat Intel Advisory

Bouncy Castle Authentication Bypass Vulnerability Threat Intel Advisory

AridViper Windows Malware Threat Intel Advisory

The Security Engineer Who Creates His Own Opportunities

Panel Discussion on 'Funded versus Bootstrapped Cyber Security Startup'

Malware Analysis and Reverse Engineering: Analysing Magecart Skimmer

Zebrocy Malware Laced Phishing Email Threat Intel Advisory

UNC2452 Threat Actor Group Threat Intel Advisory

Carbanak/ FIN7 Crime Gang Threat Intel Advisory

AnalyticParameter Adware Threat Intelligence

Xanthe Cryptomining Botnet Threat Intel Advisory

Centralized Log Management with ELK Stack

Mushtik Botnet Threat Intel Advisory

Patch Released for Critical Apache Unomi RCE Vulnerability

HEH Botnet Wipes Routers, Servers, and IoT Devices

XVigil Community - CTF Challenge

How to use Prometheus to Monitor Complex Applications and Infrastructure

CloudSEK community grant

Leveraging STIX and TAXII for better Cyber Threat Intelligence (Part 1)

The Rise of Cybercrime on Telegram and Discord and the Need for Continuous Monitoring

Fortinet SSL-VPN Vulnerability CVE-2018-13379: 49K+ Vulnerable Targets Listed

Git LFS Remote Code Execution Vulnerability - ADVISORY

COVID-19 vaccine R&D under attack by state sponsored actors

Hacking life as a Security Analyst and a social worker

UNC1945 Hacker Group Threat Intel Advisory

Event-Driven service using Lambdas - Event 📅

XDDown Downloader Malware Tool Threat Intel Advisory

Firestarter Android Malware Threat Intel Advisory

Past internships shaped my goal to become an entrepreneur | Nithya Kurian

KashmirBlack Botnet Threat Intel Advisory

T-RAT Malware Threat Intel Advisory

Discord Remote Code Execution Vulnerability Threat Intel Advisory

PyVil Remote Access Trojan Threat Intel Advisory

Zumanek Remote Access Trojan Threat Intel Advisory

The Evolution of the Data Leak Extortion Ecosystem

LokiBot Trojan Threat Intel Advisory

ThyssenKrupp sample database for sale on data leak website

Development of a Language-Independent Microservice Architecture

1 million IRCTC users’ PII resurfaces on data sharing forum

Redefining Products and Solutions at CloudSEK - Prerit Prasad

Conti ransomware

Fappy Ransomware Threat Intel Advisory

200K CAT 2019 test takers’ PII database leaked online

Evolved ProLock Ransomware Threat Intel Advisory

CloudSEK’s cheat sheet for setting strong passwords

What makes web applications an easy target for hackers?

CloudSEK’s UX Designer hiring challenge and the victors

Worst cybersecurity strategies and how we can overcome them

How to build a secure AWS infrastructure?

Cosplay party by Cloudsters

Security Use Cases & Solutions for Work from Home - DSCI

Earn while you learn Internship Program 2020

Cyber Trivia Quiz #1

3.4M LiveAuctioneers users’ PII and cracked passwords for sale on data sharing forum

CloudSEK Spotlight - V2 Newsletter Edition.

25,000 UAE Police Officers’ PII for Sale on Data Sharing Forum

40,000+ Indian online marketplace suppliers’ data leaked

7.2 million records were exposed, but not from the BHIM app

Leaked WHO user credentials resurface on popular trading forum

Threat actors, posing as Indian government departments, are sending malicious emails to organizations

Ghost Squad Hackers targets and hacks Govt. of India Clean Money initiative website

APT group Gamaredon adopts COVID-19 lures to spread malware

Syrian nation-state actor uses COVID lures to spread malware

Dark web marketplace sells Iranian, Indian official websites’ databases

Zoom meeting codes leaked on public forum

800 GB of Indian Tax Office data for sale on Russian hacking forum

Zeus Sphinx banking Trojan masquerades as relief payment

How to effectively manage remote AI teams ? - Webinar

New crypto token claims to “help” COVID-19 victims

New dark web marketplace sells Xanax, Cannabis, and more

Weaponizing AI to orchestrate cyber attacks

Menace of Fake Banking Services

FASTag Phishing Campaigns Flourish on Social Media

Chronic Phishing Targets Paytm, Flipkart, Amazon users

Dark Web and ATM Hacking