Supplemental Cyber Highlights – June 29, 2023

The following posts are useful for general awareness of current threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.

• 8Base ransomware gang escalates double extortion attacks in June – Bleeping Computer
• Business as Usual: Falcon Complete MDR Thwarts Novel VANGUARD PANDA (Volt Typhoon) Tradecraft – Crowdstrike
• SMBs plagued by exploits, trojans and backdoors – SC Magazine
• Most Enterprise SIEMs Blind to MITRE ATT&CK Tactics – Dark Reading
• Linux version of Akira ransomware targets VMware ESXi servers – Bleeping Computer
• JokerSpy | Unknown Adversary Targeting Organizations with Multi-Stage macOS Malware – Sentinel One
• Uncovering attacker tactics through cloud honeypots – Help Net Security
• Mockingjay Slips By EDR Tools With Process Injection Technique – Dark Reading