Incidents

SCARLETEEL: Operation leveraging Terraform, Kubernetes, and AWS for data theft

February 28, 2023

The Sysdig Threat Research Team recently discovered a sophisticated cloud operation in a customer environment, dubbed SCARLETEEL, that resulted in stolen proprietary data.

[…]

This attack was more sophisticated than most, as it started from a compromised Kubernetes container and spread to the victim’s AWS account. The attackers also had knowledge of AWS cloud mechanics, such as Elastic Compute Cloud (EC2) roles, Lambda serverless functions, and Terraform.

• original article at Sysdig

Attack on German Schools in Karlsruhe

February 14, 2023

As a mitigation the IT systems of the affected schools had to be shut down completely.

• in the news (German)
• city of Karlsruhe press statement (German)

VMware ‘ESXiArgs’ Ransomware Attack

February 6, 2023

• https://blogs.vmware.com/security/2023/02/83330.html

Reddit Phishing Attack

February 5, 2023

https://www.reddit.com/r/reddit/comments/10y427y/we_had_a_security_incident_heres_what_we_know/