What’s New

U.S. Takes Down IPStorm Botnet, Russian-Moldovan Mastermind Pleads Guilty

The U.S. government on Tuesday announced the takedown of the IPStorm botnet proxy network and its infrastructure, as the Russian and Moldovan national behind the operation pleaded guilty. "The botnet infrastructure had infected Windows systems then further expanded to infect Linux, Mac, and Android devices, victimizing computers and other [...]

By |2023-11-15T14:05:56-05:00November 15th, 2023|Categories: BMT Announcement|

New PoC Exploit for Apache ActiveMQ Flaw Could Let Attackers Fly Under the Radar

Cybersecurity researchers have demonstrated a new technique that exploits a critical security flaw in Apache ActiveMQ to achieve arbitrary code execution in memory. Tracked as CVE-2023-46604 (CVSS score: 10.0), the vulnerability is a remote code execution bug that could permit a threat actor to run arbitrary shell commands. It [...]

By |2023-11-15T14:04:31-05:00November 15th, 2023|Categories: BMT Announcement|

The Importance of Continuous Security Monitoring for a Robust Cybersecurity Strategy

In 2023, the global average cost of a data breach reached $4.45 million. Beyond the immediate financial loss, there are long-term consequences like diminished customer trust, weakened brand value, and derailed business operations. In a world where the frequency and cost of data breaches are skyrocketing, organizations are coming [...]

By |2023-11-14T13:46:58-05:00November 14th, 2023|Categories: BMT Announcement|

Alert: OracleIV DDoS Botnet Targets Public Docker Engine APIs to Hijack Containers

Publicly-accessible Docker Engine API instances are being targeted by threat actors as part of a campaign designed to co-opt the machines into a distributed denial-of-service (DDoS) botnet dubbed OracleIV. "Attackers are exploiting this misconfiguration to deliver a malicious Docker container, built from an image named 'oracleiv_latest' and containing Python [...]

By |2023-11-14T13:44:10-05:00November 14th, 2023|Categories: BMT Announcement|

BMT Named Top Cybersecurity Company in NJ by NJBIZ Reader Rankings

Business Machine Technologies, Inc. (BMT) is proud to announce we have earned the top spot on the 2023 NJBIZ Reader Rankings list of New Jersey’s Leading Cybersecurity Companies. The designation comes as part of the business journal’s annual Reader Rankings, which are decided by nominations from readers. BMT also earned the #1 position [...]

By |2023-11-13T13:15:31-05:00November 13th, 2023|Categories: Awards, BMT Announcement, News|Tags: , , |

New Ransomware Group Emerges with Hive’s Source Code and Infrastructure

The threat actors behind a new ransomware group called Hunters International have acquired the source code and infrastructure from the now-dismantled Hive operation to kick-start its own efforts in the threat landscape. "It appears that the leadership of the Hive group made the strategic decision to cease their operations [...]

By |2023-11-13T14:28:51-05:00November 13th, 2023|Categories: BMT Announcement|

Top 5 Marketing Tech SaaS Security Challenges

Effective marketing operations today are driven by the use of Software-as-a-Service (SaaS) applications. Marketing apps such as Salesforce, Hubspot, Outreach, Asana, Monday, and Box empower marketing teams, agencies, freelancers, and subject matter experts to collaborate seamlessly on campaigns and marketing initiatives.These apps serve as the digital command centers for marketing [...]

By |2023-11-13T14:27:21-05:00November 13th, 2023|Categories: BMT Announcement|

Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers

A sub-cluster within the infamous Lazarus Group has established new infrastructure that impersonates skills assessment portals as part of its social engineering campaigns. Microsoft attributed the activity to a threat actor it calls Sapphire Sleet, describing it as a "shift in the persistent actor's tactics." Sapphire Sleet, also called [...]

By |2023-11-13T11:51:07-05:00November 11th, 2023|Categories: BMT Announcement|

Russian Hackers Sandworm Cause Power Outage in Ukraine Amidst Missile Strikes

The notorious Russian hackers known as Sandworm targeted an electrical substation in Ukraine last year, causing a brief power outage in October 2022. The findings come from Google's Mandiant, which described the hack as a "multi-event cyber attack" leveraging a novel technique for impacting industrial control systems (ICS). "The [...]

By |2023-11-13T11:48:42-05:00November 10th, 2023|Categories: BMT Announcement|

The Award for 2023 Most Impersonated Brand Goes to….

Microsoft! Phishing continues to lead the pack when it comes to online threats, with the FBI reporting more than 300,000 attacks last year alone. How are these attacks still so successful, despite better security tools and an increase in security awareness training? This is partially a result of cybercriminals knowing what may prompt [...]

Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation

Cybersecurity researchers have developed what's the first fully undetectable cloud-based cryptocurrency miner leveraging the Microsoft Azure Automation service without racking up any charges. Cybersecurity company SafeBreach said it discovered three different methods to run the miner, including one that can be executed on a victim's environment without attracting any [...]

By |2023-11-08T14:24:50-05:00November 8th, 2023|Categories: BMT Announcement|
Go to Top