"Karakurt actors have claimed to steal data and threatened to auction it off or release it to the public unless they receive payment of the demanded ransom," according to the FBI, CISA, and friends.
"Some Karakurt victims have reported that initial intrusion may have occurred thanks to compromised Cisco AnyConnect VPN user accounts," the security bulletin warns.
[
add
]
[
|
|
...
]