CTM360 Blog

SolarWinds - an American software vendor for managing networks and infrastructure has been breached. Orion, a network monitoring product was modified by a state-sponsored threat actor via embedding ba...

CTM360 has observed a trend in which employees from financial institutions are exposing critical company information or infrastructure-related details on professional networking and employment platfor...

Pharma Hack is an exploit targeting WordPress sites using SEO spamming. Hackers inject the site with content related to pharmaceuticals in order to lure users who are looking for drug resellers either...

Cybercriminals are taking advantage of the COVID-19 pandemic, to lure laid-off individuals seeking jobs or working remotely. These cyber crooks have been targeting this specific class of people to wor...

A new Retefe Malware campaign targeting Middle East banking institutions that targets both Windows and Mac users was recently discovered. The malware campaign added new URL patterns to the Retefe prox...

As the whole world goes into a deep and speedy phase of digital transformation, cloud, and online service, there has been an excessive reliance on web conferencing services for remote work meetings. A...

Over the last few years, CTM360 has observed a rapid rise of fraudulent and bogus websites disguised as genuine news sites. In this particular type of fraud, users are misled via fake/bogus news with ...

Why should you get your account verified? Team CTM360 takes action on hundreds of fake profiles daily and part of the requirements to take down such profiles is to provide the host with the genuine p...

As the current pandemic crisis hits an all-time high, more countries are going into partial or complete lockdown. This has resulted in many employees being forced to work from home and rely heavily on...

As the current pandemic crisis has scaled across the globe, the majority of the organizations have resorted to working remotely. This opens up an organization to potential cyber threats as there is a ...

As the current pandemic crisis has scaled across the globe, there has already been a surprisingly large number of cyber crime related incidents. Cybercriminals are using the novel COVID-19 issue as a ...

A watering hole attack is a type of cyber attack that spreads malware into a victim’s devices. The malware being used in these attacks either gathers the victim’s personal data and sends it back to th...

Security vulnerabilities are known to appear in operating systems and applications over the course of time. It is the role of the vendors to preserve the integrity of these products by providing patch...

TA505, is a financially motivated Russian threat group targeting retail industries and financial sectors around the world since 2014. They continuously update their tactics, techniques, and procedures...

Recently, there have been reports from across the globe of banks being impacted by the ‘BIN Attack’. Where the attackers bruteforce a large number of randomly generated card numbers. There have been c...

CTM360 has discovered a new wave of financial attacks where cybercriminals use fake ad campaigns/pages to redirect users to fraudulent websites that have investment schemes, Bitcoin Ponzi schemes, fak...

Amazon S3 is one of the leading cloud storage solutions offered by Amazon and is used by companies globally to power various tasks and operations. There are thousands of data breach incidents caused b...

A new cyber threat campaign called “Sea Turtle” has been discovered. The ongoing operation began in January 2017 and continued through the first quarter of 2019. The campaign is targeting public and ...

WHAT ARE UNOFFICIAL FACEBOOK BUSINESS PAGES? All unclaimed pages that act as placeholders for locations without a managed business page are considered to be “Unofficial”. Users will still be able to...

Carding is the process of obtaining unauthorized access to a card's information and fraudulently using it for personal gain. How does it work? Criminals aim to carry out carding transactions in two...

Threat Description Punycode is a special encoding scheme for internationalized domain names, which makes it possible to register domains with foreign characters. It works by converting strings of Un...

Threat Description Nowadays, gift cards are a token of appreciation to a family, friend or co-worker. However, they prove to be troublesome when used to scam people; many people within the region do...

Fraudsters are continuously coming up with new ways to lure targets for monetary gains or to collect personal information (like Full name, email, telephone or bank account details etc.). Team CTM360 h...

Threat Description URL obfuscation has long been a tactic of cybercriminals in their attempt to trick their potential victims. Yet again, another obfuscation technique has been observed by Team CTM3...

Threat Description Binary Trading (commonly also known as Binary Options Trading or Binary Options) is a type of option where the trader takes a yes or no position on the price of a stock or other a...

Threat Description Subsequent to our advisory on the cache of tools leaked from the NSA by the group ShadowBrokers, a cybercriminal group has incorporated one of the exploits, EternalBlue, into a wo...

A prominent hacking group has allegedly leaked documents and tools from 2013 belonging to the NSA. This cache of data contains a targeted list of at least 29 financial institutions from the Arab World...

Password Spraying is a technique used by attackers in an attempt to gain access to the victim's account by trying passwords that users are most likely to use. Attackers in a single attempt can try to ...

Most services nowadays require signup and login procedures that are based on usernames and passwords.  Unfortunately, single-factor authentication is not enough to protect accounts especially at...