23andMe Data Breach Alert!
Hackers infiltrated, using recycled login credentials to pilfer 23andMe accounts
Abe Tinoco
Abe leads adversary simulation engagements and builds automation to keep incident response fast and accountable.
Announcing Redteam Relay News
After building Redteam Relay as my practitioner’s notebook, I’m extending it to deliver a focused news feed. The core mission doesn’t change: short, practical writing on hacking, defensive strategy and operational security. This site blends offensive perspective with defensive execution to help you move quickly. Making timely news part of that was the logical next step.
Cisco Redefines Cybersecurity Landscape with $28 Billion Splunk Acquisition!
This all-cash agreement, representing a 31% premium over Splunk's stock price, marks Cisco's largest deal to date.
Cyber Outage Alert: CrowdStrike Hit by Major Disruption
The disruption, stemming from a junior engineer pushing out a bad update, has left many businesses offline, vulnerable and scrambling to secure their systems.
Cyber Warfare in the Middle East: A Growing Concern
This is my way of bringing some of the conflict to light.
Dark Web Drug Marketplace Shut Down by Finnish Law Enforcement!
The marketplace operated as a hidden service within the encrypted TOR network, enabling anonymous criminal activities, with drugs smuggled into Finland from abroad.
Emerging Threat Alert: ShadowSyndicate
Cybersecurity experts have exposed a new cybercrime entity named ShadowSyndicate (formerly Infra Storm), which may have harnessed up to seven different ransomware families in the past year.
Enter Snatch: A ransomware-as-a-service (RaaS) operation
They've been active since 2018 and are back in the spotlight this week.
Ethereum Founders Twitter Gets Hacked
Vitalik Buterin, the creator of Ethereum crypto, found himself in an unfortunate situation when his Twitter account fell victim to a hacking incident.
Exciting News: October is Cybersecurity Awareness Month!
Get ready to dive deep into the world of digital defenses because October is Cybersecurity Awareness Month!
Insider Threat Alert: Meet Gold Melody – The Cybercrime Group Selling Your Company's Secrets!
Today, let's delve into one of the most intriguing threat actors: insiders selling access to your very own organization!
Laundering site Sinbad seized
Cryptocurrency mixers, like Sinbad, allow users to deposit crypto, which is then mixed among various wallet addresses to obscure its traceability.
MGM Resorts Hack of 2023
MGM Resorts International revealed yesterday that it's grappling with a cybersecurity issue affecting several systems, including its primary website, online reservations, and in-casino services like ATMs, slot machines, and credit card machines.
NK Hackers Target Russian Government
North Korea, hacking another well known threat actor, Russia.
North Korea's Lazarus Group Strikes Big with $240M Crypto Heist!
This marks a significant escalation in their hacking activities.
Not my dearest Okta :(
Cybersecurity month may be over, but the breaches don't stop.
Ransomware in the Healthcare sector!
Rhysida, a ransomeware-as-a-service operation, has claimed one of their first victims in the healthcare industry - Singing River Heath System.
SIM Farm Discovered by Federal Agents
Investigators reference organized crime and possible foreign links, but no public arrests yet.
Significant Developments: USA & UK Impose Sanctions on 11 Russian Nationals Linked to Ransomware
In an international bust, the US and the UK have imposed sanctions on 11 Russian individuals associated with the TrickBot and Conti ransomware operations.
Sony Cybersecurity Breach... Again.
This vulnerability, a severe SQL injection flaw leading to remote code execution, was exploited by the notorious Clop ransomware gang.
Teams used as a landing pad for malware (2023)
Recently, companies have been seeing the abuse of Teams as a landing pad for malware.
TeamsPhisher Tool Release by Navy's Red Team
You can take a look at the tool and its operation in the picture here.
Threat Brief: Qantas Leak and Oracle Zero‑Day
This week’s brief focuses on two major events: a data leak impacting Qantas and dozens of other companies, and a zero‑day vulnerability exploited in Oracle’s E‑Business Suite
Threat Brief: Supply-Chain, Trusted Vendor Attack Surfaces Rising
An uptick in third-party and vendor compromises shows how attackers are targeting trust chains. Here’s what to fix right now before your partners become your breach vector.
Turning Security Awareness into Security Culture!
Let's take a dive into the culture of security together.
Fending off the Lynx Group Ransomware
A short write-up of how we mitigated an attack for a client