New RAT Targeting Mexican Financial Firms
The Blackberry Research and Intelligence team revealed a cyber campaign using the ‘AllaKore RAT’ payload to target the Mexican financial services sector since 2021.
On Blackberry’s analysis, the ‘AllaKore RAT’ payload was designed to enable financially motivated threat actors to send stolen banking credentials to a command-and-control (C2) server for financial fraud purposes.
Trello Data Breach Exposes 15M Users
Initially noted by the ‘Have I Been Pwned?’ breach notification service, user data of 15 million Trello users are now exposed, and peddled on Dark Web hacking forums.
Atlassian, Trello’s parent company commented on the attack, claiming they’ve taken significant steps to prevent such data scraping attacks. They will continue to investigate and mitigate the situation surrounding the cyber attack.
Jenkins Vulnerabilities Discovered
SonarSource researchers discovered two critical vulnerabilities in the Jenkins open-source platform that enable attacks to access data in vulnerable servers and execute arbitrary commands.
The vulnerabilities were patched through collaboration between Jenkins and SonarSource on January 24th. However, some researchers already caught activity of the vulnerability being exploited in the wild.
