The same band of hackers responsible for the DNS records hijack of Twitter last month launched an apparent similar attack on leading Chinese search engine Baidu, according to published reports. For several hours on Monday night EST, visitors to the site were redirected to a page announcing that the site had been overtaken by the Iranian Cyber Army. Baidu blamed the problem on an "external manipulation" of its domain name server in the United States. The site was operating normally on Tuesday. It is unclear what the motive of the attack was. — DK
The Register reports that the Open Cybersecurity Schema Framework project, led by AWS and Splunk, will use Symantecs ICD Schema to create a vendor-agnostic standard for cyberthreat response. Today's security leaders face an agile, determined and diverse set of threat actors, Trend Micro officials wrote in a blog post. From emboldened nation state hackers to ransomware-as-a-service (RaaS) affiliates, adversaries are sharing tactics, techniques and procedures (TTPs) on an unprecedented scale and it shows.
The Hacker News reports that Quantum, Silent Ransom, and Roy/Zeo, three autonomous threat groups that split from the Conti cybercrime cartel, have created and adopted their own targeted call back phishing tactic called BazaCall as initial vector to access and breach targeted network, according to a report from cybersecurity firm Advintel.