Tag: phishing
-
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Introduction A sophisticated phishing campaign, attributed to the threat group known as ‘0ktapus,’ has ensnared over 130 companies. This widespread operation leveraged the spoofing of a multi-factor authentication (MFA) system to compromise victim organizations. The campaign’s success highlights the persistent vulnerabilities in authentication processes, even those designed to enhance security. In-Depth Analysis The ‘0ktapus’ threat…
-
Blind Eagle’s Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra
Introduction: Cybersecurity researchers have identified five distinct activity clusters attributed to a persistent threat actor named Blind Eagle, with observed operations spanning from May 2024 to July 2025. These campaigns primarily targeted entities within the Colombian government, encompassing local, municipal, and federal levels. Recorded Future Insikt Group is monitoring this activity, which employs a combination…