Cactus Ransomware Group Targets Qlik Sense Servers
Cactus ransomware actors are targeting Qlik Sense servers with exploits for three separate vulnerabilities in an ongoing campaign.
SEARCH
Dennis Fisher
Editor in ChiefDennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
- dennis@decipher.sc
- @dennisf
Featured Articles
Russian Group Forest Blizzard Deploying GooseEgg Tool to Exploit CVE-2022-38028
A Russian threat group known as Forest Blizzard has been using a custom tool called GooseEgg to exploit a Windows Print Spooler
UK Police Take Down LabHost Phishing Service
Europol and a collection of UK law enforcement agencies have disrupted the LabHost phishing platform, which targeted victims
Decipher Podcast: Mike Hanley Returns
Mike Hanley, CSO and SVP of engineering at GitHub, joins Dennis Fisher to talk about the company's move to enforce 2FA for all developers, the changing role of the CISO, and what's ahead for software supply chain security.
FBI Takes Down Genesis Market
U.S. law enforcement authorities have taken down the Genesis Market darknet marketplace, which sold stolen data and initial access.
Google Reveals More Details of North Korean APT43 Activity
Google's elite Threat Analysis Group has revealed more details of the North Korean APT43 group, which is refers to as Archipelago.
Lazarus Group Gopuram Backdoor Found at Some 3CX Victims
A backdoor named Gopuram used by the Lazarus Group has been found in a small number of environments compromised in the 3CX supply chain attack.
Supply Chain Attacks: ‘The Best Bang For Your Buck’
The supply chain attack against 3CX may have been planned for more than a year, and such intrusions are the best return on investment for attackers, researchers say.