Tycoon 2FA was dismantled this week by law enforcement and industry partners including TrendAIβ’. The phishing-as-a-service platform offered MFA bypass services using adversary-in-the-middle (AitM) proxying.
In this blog entry, we discuss how North Korea's significant role in cybercrime β including campaigns attributed to Void Dokkaebi β is facilitated by extensive use of anonymization networks and the use of Russian IP ranges.
APT group Earth Koshchei, suspected to be sponsored by the SVR, executed a large-scale rogue RDP campaign using spear-phishing emails, red team tools, and sophisticated anonymization techniques to target high-profile sectors.
Our research into Retrieval Augmented Generation (RAG) systems uncovered at least 80 unprotected servers. We highlight this problem, which can lead to potential data loss and unauthorized access.
Login
