Cobalt Strike stories

Elastic Security Labs' latest Global Threat Report reveals a shift in cloud security dynamics, with Microsoft Azure overtaking AWS in anomalous activity, and a rise in AI-augmented cyber threats.

Elastic's 2024 Global Threat Report reveals that misconfigurations and offensive security tools are major cybersecurity vulnerabilities. Adversaries exploit basic security weaknesses to breach cloud environments and gather credentials, urging firms to tighten their defences.

A cyberattack by RansomEXX has disrupted services at around 300 Indian banks, affecting ATMs and UPI transactions. CloudSEK investigates the breach.

Elastic Security Labs has unveiled GrimResource, a new attack technique exploiting the Microsoft Management Console, allowing full code execution with minimal security alerts.

Bridewell's 2024 CyberScape Briefing unveils severe cyber threats impacting critical national infrastructure, including Cobalt Strike usage swell.

Threat actor GambleForce has struck 24 organisations in 8 countries in 3 months, exploiting SQL vulnerabilities to steal sensitive data.

Proofpoint cybersecurity company has released research finding a 161% increase in threat actors using the threat emulation tool Cobalt Strike.

To limit the risk of being discovered, attackers operated outside of normal business hours and cashout operations were planned for weekends.