Category: Information Security Buzz

According to a new study, the FatalRAT malware, which spreads via bogus websites for well-known apps, targets Chinese-speaking people. FatalRat malware, which was first identified in August 2021, has the ability to record keystrokes, alter the screen resolution of a…

Read more →

Blockchain analysts have uncovered evidence that North Korean hackers have found a way to get around U.S. sanctions to launder the bitcoin gains from their heists. Through a single crypto-mixing business named Sinbad, The Lazarus Group, as the threat actor…

Read more →

Cloudflare thwarted the largest volumetric distributed denial-of-service (DDoS) attempt ever this past weekend. The company reported that it had stopped dozens of hyper-volumetric DDoS attempts over the weekend that had been directed at its clients. The most extraordinary attack exceeded…

Read more →

A cyberattack against Scandinavian Airlines was reported, and “Anonymous Sudan” took credit. On Tuesday, a hack against Scandinavian Airlines (SAS) caused its website to go down and revealed some customer information. Customers who sought to log onto the SAS mobile…

Read more →

ESXiArgs ransomware assaults have recently affected hundreds of different systems, but it’s still not known which vulnerability is being used. The number of ESXiArgs ransomware assaults has increased recently, but it’s still unclear exactly which vulnerability threat actors are utilizing.…

Read more →

Because of the effects of a ransomware assault that required the City to shut down all of its IT systems on February 8, the City of Oakland has declared a local state of emergency. G. Harold Duffey, the interim city…

Read more →

Beep 4 was discovered last week, a brand-new stealthy virus with several capabilities to avoid analysis and detection by security tools. After a flurry of samples were posted to VirusTotal, an internet portal for file scanning and harmful content identification,…

Read more →

Organizations in the Philippines, Turkey, the Philippines, and the United Kingdom have recently been affected by MortalKombat, a new ransomware that cybersecurity experts are pointing out. Using MortalKombat and a brand-new piece of malware called Laplas Clipper, researchers from Cisco’s…

Read more →

The APT37 threat group targets people for intelligence gathering using the new elusive “M2RAT” malware and steganography. North Korea’s APT37, sometimes referred to as “RedEyes” or “ScarCruft,” is a hacker collective thought to be funded by the government. The hacker…

Read more →

Preventing data breaches and other cyberattacks is paramount in today’s digital world. Members of the BlueTeam are security experts tasked with finding and fixing vulnerabilities before they cause damage to an organization. Every cybersecurity team needs access to a variety…

Read more →

Blockchain analysts have uncovered evidence that North Korean hackers have found a way to get around U.S. sanctions to launder the bitcoin gains from their heists. Through a single crypto-mixing business named Sinbad, The Lazarus Group, as the threat actor…

Read more →

Cloudflare thwarted the largest volumetric distributed denial-of-service (DDoS) attempt ever this past weekend. The company reported that it had stopped dozens of hyper-volumetric DDoS attempts over the weekend that had been directed at its clients. The most extraordinary attack exceeded…

Read more →

Following a network intrusion in which information-stealing malware was installed, and data was extracted, Pepsi Bottling Ventures LLC, one of the largest bottlers of Pepsi-Cola beverages in the United States, experienced a data breach. Although the security lapse occurred on…

Read more →

In June 2022, the advanced persistent threat (APT) actor Tonto Team attempted to target the cybersecurity firm Group-IB but was unsuccessful. The business, with its headquarters in Singapore, claimed to have identified and stopped emails the group sent to trick…

Read more →

A Sunday night email hack at domain registrar Namecheap resulted in a deluge of DHL and MetaMask phishing emails that sought to steal the recipients’ personal information and bitcoin wallets. The phishing attacks began at 4:30 PM ET and came…

Read more →

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has released new cybersecurity advice that details recent tactics, methods, and procedures (TTPs) associated with North Korean ransomware attacks against public health and other critical infrastructure sectors. The report was produced jointly…

Read more →

APIs continue to play an integral role in the software development industry, paving the way for better software integration and allowing for a more seamless user experience, and transfer of data, vital or otherwise, from one server to another, or…

Read more →

The largest chain of bookstores in Canada, Indigo Books & Music, was the victim of a hack yesterday, forcing the business to restrict online payments to cash and shut down its website for customers. Although the precise nature of the…

Read more →

On Sunday night, the popular social platform Reddit was the victim of a cyberattack that granted hackers access to its internal business systems and provided them the chance to obtain sensitive data and source code. The company claims that the…

Read more →

Researchers revealed on Wednesday that hackers had found a means to get beyond ChatGPT’s limitations and are using it to market services that let users produce malware and phishing emails. ChatGPT is a chatbot that imitates human output by using…

Read more →

There is evidence that hackers with ties to Russia are using new software designed to steal information to launch attacks against Ukraine. This malware, discovered by the Computer Emergency Response Team of Ukraine (CERT-UA) and dubbed Graphiron by Broadcom-owned Symantec,…

Read more →

A data breach at the Weee! Asian and Hispanic meal delivery business exposed the private data of 1.1 million clients. Weee! bills itself as the most prominent Asian and Hispanic supermarket in North America, shipping groceries to all 48 states…

Read more →

Vulnerability scanning is the process of using automated tools to identify potential security weaknesses and vulnerabilities in an organization’s infrastructure. It is an essential step in maintaining the security of a system as it helps identify any potential points of…

Read more →

The digital age is engulfed with the issue of data privacy. With more personal data exchanged online, organizations need to have a plan in place to protect sensitive data. In this article, we’ll outline the steps that organizations can take…

Read more →

Security specialists have discovered four malicious Dota 2 game modes that a threat actor used to backdoor the players’ systems. Avast Threat Labs researchers discovered that the unidentified attacker built four game modes for the wildly played Dota 2 multiplayer…

Read more →

According to crowdsourced data examined by CNN, a new worldwide ransomware campaign has affected at least 3,800 people, including hundreds in the US, triggering warnings from European and US cybersecurity experts. However, according to “Ransomwhere,” a network created by cybersecurity…

Read more →

APIs continue to play an integral role in the software development industry, paving the way for better software integration and allowing for a more seamless user experience, and transfer of data, vital or otherwise, from one server to another, or…

Read more →

Since ChatGPT’s inception in November of last year, it has experienced phenomenal growth in popularity. This growth has finally impacted Google, as it just unveiled Bard as a ChatGPT rival and alternative. Bard is now exclusively accessible to “trusted testers,”…

Read more →

 Abnormal Security, the leading behavioral AI-based security platform, today released its H1 2023 Email Threat Report, which examines recent developments in the email threat environment and focuses on the growing risk employees pose to an organization’s cybersecurity. The latest Abnormal research…

Read more →

The Ukrainian CERT-UA (Computer Emergency Response Team) has issued a warning about potential cyberattacks against Ukrainian governmental institutions using the authorized remote access program Remcos. The agency has identified the threat actor behind the widespread phishing campaign as UAC-0050 and…

Read more →

After a massive wave of raids across Europe last week, Law enforcement has shut down an encrypted messaging service that has been on their radar since a raid on an old NATO bunker in 2019. 48 individuals that were users…

Read more →

Electronic billboards in Moscow attracted the attention of locals and Russian media over the weekend. The large signs had the words “Come to me if you’re looking for the greatest” and a picture of a woman wearing a futuristic mask.…

Read more →

Using illegal means, the Russian government has been spying on its citizens, according to 128 GB of information leaked by Caxxii, a hacktivist group affiliated with Anonymous. The biggest Russian internet provider Convex provided the hacktivist group Anonymous with 128…

Read more →

In order to propagate the ESXiArgs ransomware, attackers actively target VMware ESXi servers that have not yet gotten a patch for a two-year-old remote code execution vulnerability, according to administrators, hosting firms, with the French Computer Emergency Response Team (CERT-FR).…

Read more →

Dingo Token has been reported as a possible scam by IT security firm Check Point security researchers after discovering a feature that lets the project’s owner manipulate trading fees up to 99% of the transaction value. Check Point analysts observed…

Read more →

Digital Rights Management (DRM) systems are a crucial tool for protecting digital content from unauthorized access or reproduction. Whether you’re a content creator looking to protect your intellectual property or a business looking to protect revenue streams, DRM is an…

Read more →

The internet and phone service available in Bermuda was hampered by a major power outage that began on Friday evening. The government encouraged consumers as personnel attempted to restore service around the clock; they advised customers to “unplug all critical…

Read more →

Since the beginning of 2020, romance fraud has caused consumer retail banks to lose 95% more money, according to data released by TSB, as part of a campaign to bring attention to the problem. In a report released today, the…

Read more →

Following an attack on a firm that is crucial to the British financial system by a ransomware group with Russian ties, trading in the City of London has fallen into disarray. A top official in the US Treasury Department said…

Read more →

Since September 2021, about a thousand Redis servers have been infected by new stealthy malware meant to hunt down unprotected Redis servers online and create a botnet that mines for the Monero cryptocurrency. The malware, nicknamed HeadCrab by Aqua Security experts Nitzan…

Read more →

BlackBerry Limited (NYSE: BB; TSX: BB) today released new research revealing that the majority (76%) of UK IT leaders believe that foreign states are already using ChatGPT for malicious purposes against other nations, with almost half (48%) predicting that we are…

Read more →

Hacker gangs frequently run like businesses; they have staff, clients, and working hours. They often employ the same strategies as legitimate tech companies and startups to find fresh individuals with improved skill sets to compete in a rising industry. The…

Read more →

The world has become increasingly digital, and with that, it has also become more vulnerable to scams and fraudulent activities. One such scam is deep fake scams. Deepfake technology has been around for a few years and has been making…

Read more →

In an ongoing cyber espionage campaign that uses a new backdoor to exfiltrate data, the Iranian nation-state hacker group OilRig has continued to target Middle Eastern governments. Researchers at Trend Micro, Mohamed Fahmy, Sherif Magdy, and Mahmoud Zohdy, explained that…

Read more →

Data privacy is an increasingly important concern for individuals, businesses, and governments worldwide. With the rapid expansion of digital technology and the internet, sensitive information is more vulnerable than ever to unauthorized access, theft, and misuse. As a result, organizations…

Read more →

Over twenty thousand of QNAP network-attached storage (NAS) units are awaiting a patch to fix a serious security hole that was fixed on Monday by the Taiwanese business. This SQL injection vulnerability (CVE-2022-27596) allows remote threat actors to insert malicious…

Read more →

An authenticated attacker could use a high-severity format string vulnerability in BIG-IP to cause a denial-of-service (DoS) condition and possibly execute arbitrary code, according to a warning from F5. The security flaw, identified as CVE-2023-22374, affects iControl SOAP, an open…

Read more →

A cyberattack took down over a dozen US hospitals’ websites on Monday morning, which is being blamed on Russian hackers. A pro-Russian organization called Killnet claims to have taken down the websites of 14 US hospitals through distributed denial of…

Read more →

Porsche stopped making a new NFT line because of weak sales and criticism from the cryptocurrency community, which gave threat actors the opportunity to fill the gap by building phishing websites that steal cryptocurrency wallet users’ digital assets. Non-fungible tokens…

Read more →

Since the beginning of 2020, romance fraud has caused consumer retail banks to lose 95% more money, according to data released by TSB, as part of a campaign to bring attention to the problem. In a report released today, the…

Read more →

Since September 2021, about a thousand Redis servers have been infected by new stealthy malware meant to hunt down unprotected Redis servers online and create a botnet that mines for the Monero cryptocurrency. The malware, nicknamed HeadCrab by Aqua Security experts Nitzan…

Read more →

Following an attack on a firm that is crucial to the British financial system by a ransomware group with Russian ties, trading in the City of London has fallen into disarray. A top official in the US Treasury Department said…

Read more →

BlackBerry Limited (NYSE: BB; TSX: BB) today released new research revealing that the majority (76%) of UK IT leaders believe that foreign states are already using ChatGPT for malicious purposes against other nations, with almost half (48%) predicting that we are…

Read more →

Hacker gangs frequently run like businesses; they have staff, clients, and working hours. They often employ the same strategies as legitimate tech companies and startups to find fresh individuals with improved skill sets to compete in a rising industry. The…

Read more →

The world has become increasingly digital, and with that, it has also become more vulnerable to scams and fraudulent activities. One such scam is deep fake scams. Deepfake technology has been around for a few years and has been making…

Read more →

Over twenty thousand of QNAP network-attached storage (NAS) units are awaiting a patch to fix a serious security hole that was fixed on Monday by the Taiwanese business. This SQL injection vulnerability (CVE-2022-27596) allows remote threat actors to insert malicious…

Read more →

Data privacy is an increasingly important concern for individuals, businesses, and governments worldwide. With the rapid expansion of digital technology and the internet, sensitive information is more vulnerable than ever to unauthorized access, theft, and misuse. As a result, organizations…

Read more →

A cyberattack took down over a dozen US hospitals’ websites on Monday morning, which is being blamed on Russian hackers. A pro-Russian organization called Killnet claims to have taken down the websites of 14 US hospitals through distributed denial of…

Read more →

Porsche stopped making a new NFT line because of weak sales and criticism from the cryptocurrency community, which gave threat actors the opportunity to fill the gap by building phishing websites that steal cryptocurrency wallet users’ digital assets. Non-fungible tokens…

Read more →

A researcher has revealed the specifics of a 2FA bypass issue affecting Instagram and Facebook. A researcher has revealed the specifics of a two-factor authentication (2FA) flaw for which Facebook parent company Meta offered him a $27,000 bug bounty. In…

Read more →

Cybersecurity is an ever-evolving field and with the increasing number of cyber-attacks and data breaches. It has become crucial for organizations and individuals to be aware of the tools available to protect their online presence. With the advancement of technology,…

Read more →

Schools are a major target for malicious cybersecurity events and ransomware attacks. One reason is they sometimes need more resources or preparation to handle cybercriminal activity. Ransomware events negatively impact a school’s finances, parents, faculty and students. Why Are Schools…

Read more →

JD Sports has issued a warning that a cyberattack that affected the company may have exposed the personal information of roughly 10 million customers, including personal contact information, such as phone and email addresses. The hack may have affected customers…

Read more →

A new class of activity-tracking apps that have recently had significant success on Google Play, the official software store for Android, has been downloaded onto more than 20 million devices. The apps present themselves as a pedometer, fitness, and habit-building…

Read more →

Netflix wants to stop people from sharing their passwords, which will be pretty upsetting for its customer who shares passwords, especially those who don’t live with you. However, the streaming service meant business this time. The company lost 200,000 customers…

Read more →

Google Adwords phishing campaigns steal Bitwarden and other password managers’ vault passwords. As enterprises and consumers use unique passwords at every site, password managers must keep track of them. Unless you use KeePass, most password managers are cloud-based, allowing users…

Read more →

Today, the Artificial Intelligence Risk Management Framework’s initial version was released, according to the National Institute of Standards and Technology (NIST), a leading voice in developing A.I. standards (AI RMF). The AI RMF was developed over the past 18 months…

Read more →

The FBI announced in November that since June 2021, this ransomware operation had stolen almost $100 million from more than 1,500 businesses. For information that could assist in tying the Hive ransomware organization (or other threat actors) with the international…

Read more →

With the increasing number of cyberattacks targeting large enterprises, many companies have turned to zero-trust security measures to protect their networks and data. However, a recent report from Gartner has raised concerns about the limitations of zero trust as a…

Read more →

A member of the forum going by the name IntelBroker has offered a database containing the personal information of 3.7 million people participating in the Hilton Hotels Honors program. According to the actor who posed a threat, the data in…

Read more →

A “widespread cyber effort” that employed legitimate remote monitoring and management (RMM) software to spread a phishing scam affected at least two federal departments in the United States. To steal money from victims’ bank accounts through a refund scam, cybercriminals…

Read more →

The company Zacks Investment Research (Zacks) was infiltrated by hackers last year, allowing them access to 820,000 clients’ sensitive and personal data. The 1978-founded business uses cutting-edge financial data analytics systems to assist stock buyers. A threat actor entered the…

Read more →

In today’s digital environment, endpoint protection is more critical than ever. With the increasing use of mobile devices, laptops, and cloud services, endpoint devices are becoming the primary target for cyber-attacks. Endpoint protection is the process of securing organizational assets…

Read more →

The US “No Fly” list has 1.5 million entries that have been made public. The US “No Fly List” was made publicly available online by a Swiss hacker who allegedly discovered three private documents on an insecure cloud storage server.…

Read more →

Endpoint protection is a critical aspect of cybersecurity that helps organizations protect their endpoints (computers, laptops, mobile devices, servers, IoT devices, etc.) from potential threats. With the increasing use of technology in businesses, endpoints have become a prime target for…

Read more →

Customers of GoTo (previously LogMeIn) are being alerted that threat actors took encrypted backups, including user information and an encryption key for some of that data, when they infiltrated its development environment in November 2022. GoTo offers a platform for…

Read more →

Only one-third of UK organisations have a validated plan in place to handle cyberwarfare; and 57% have stalled or stopped digital transformation projects due to the threat of cyberwarfare Armis, the leading asset visibility and security company, today announced preliminary…

Read more →

The year 2022 was a record-breaking year for Distributed Denial of Service (DDoS) attacks in Russia. According to a report released by Russia’s largest internet service provider (ISP), Rostelecom. The company recorded 21.5 million critical web attacks against 600 Russian businesses,…

Read more →

What originally served as a Cobalt Strike substitute has evolved into a popular C2 platform for threat actors. All essential capabilities for adversary simulation are being offered by Sliver, an open-source, cross-platform adversary emulation/red team framework. These include staged and…

Read more →

The number of data breaches and their effects are increasing as more aspects of our lives move online. It’s not surprising that the latest IBM Data Breach report found that the average cost of a hack to businesses has reached…

Read more →

Data loss prevention (DLP) has been around for well over 15 years. It’s by far the most effective tool for protecting data assets, scanning, and blocking users from sending critical files or sensitive information, such as credit card or customer…

Read more →

Looking back at 2022 is instructive as you prepare your cybersecurity approach for 2023. Ithelps guide your security approach and helps prepare employees and systems for the yearahead. For example, some state-backed attacks focus on stealing intellectual property fromtechnology companies.…

Read more →

Due to an alleged bug in the game’s PC version, Grand Theft Auto (GTA) Online gamers claim to have lost game progress, had their in-game money taken, and been blacklisted from the game servers. GTA Online is the multiplayer version…

Read more →

As we approach Data Privacy Day on January 28th, 2023, we must take the time to reflect on the importance of protecting our personal information. With the digital age in full force, we share an enormous amount of data online,…

Read more →

After discovering last week that its development environment had been breached. Riot Games, the publisher, and producer of the computer games League of Legends and Valorant announced that it would postpone game patches. The LA-based game publisher revealed the incident…

Read more →

Customers of the FanDuel sportsbook and betting platform are being cautioned that their names and email addresses were made public due to a security breach at MailChimp in January 2023. Users are advised to be on the lookout for scam…

Read more →

The 8220 Gang, a Chinese threat organization that operates for profit, was the subject of a threat bulletin from Radware today. Using a specially created crypto miner and IRC bot, the group, also known as the 8220 Mining Group has…

Read more →

Following a network intrusion by a “unidentified malicious intruder,” around 37 million T-Mobile customers had their personal information taken. Its been confirmed that data taken were customers’ addresses, phone numbers, and dates of birth were among the data taken, the…

Read more →

35k accounts of PayPal users were affected by a large-scale credential stuffing attack that exposed their personal information. The attack, which took place between December 6th and December 8th, 2022, was quickly detected and mitigated by the company. However, PayPal also…

Read more →

Ransomware attacks continue to pose a significant threat to organizations and industries worldwide. The Q4 2022 ransomware report by ReliaQuest (formerly Digital Shadows) comprehensively analyzes the latest trends and developments in the ransomware landscape. The report is based on primary…

Read more →

Hackers gained access to an internal customer assistance and account administration tool, and the email marketing company MailChimp had another breach that gave threat actors access to the information of 133 customers. According to MailChimp, the attackers used social engineering…

Read more →

FTX, a bankrupt cryptocurrency exchange, said on Tuesday to creditors that cyberattacks had stolen around $415 million in cryptocurrencies. Since FTX declared bankruptcy on November 11, its CEO John Ray has revealed in a separate statement. That $90 million in…

Read more →

DNV, a Norwegian assurance and risk management firm and classification organization, has confirmed that almost 1,000 ships were affected by a recent ransomware cyberattack on its fleet management system. After the hack on its ShipManager fleet management and operations platform…

Read more →

In order to assist victims of the infection in retrieving their files without paying the thieves, security software provider Avast has made a free decryptor for the BianLian ransomware strain available. The release of a decryptor comes just over a…

Read more →

Nissan North America has started delivering data breach notifications that there has been a disclosure of client data due to a breach at a third-party service provider. On Monday, January 16, 2023, Nissan notified the security breach to the Office…

Read more →

One of the largest liquor distributors in Canada, the Liquor Control Board of Ontario (LCBO), serves over 670 stores throughout Ontario. It has recently confirmed that a web skimmer had been injected into its online store, compromising customers’ personal data…

Read more →

Over the past week, a group claimed to have wrecked the website of ODIN Intelligence, a business that offers technology and solutions to law enforcement and police departments. They had a severe security flaw that exposed sensitive information about upcoming…

Read more →

[17.01.23] VIPRE Endpoint Detection & Response (EDR) delivers streamlined, sophisticated, high-performing cloud-based EDR management in a single, easy-to-navigate console.  VIPRE Security Group, an industry-leader and award-winning global cybersecurity, privacy, data, and user protection company, announced today the launch of its…

Read more →

The Outpost24 research team have released the results of attack data gathered from a network of honeypots deployed to gather actionable threat intelligence. In total, 42 million attacks were registered between January 1st and September 30th 2022, with 20 honeypots evenly distributed around the…

Read more →

Datadog, a cloud security company, reports that a recent CircleCI security incident exposed one of its RPM GPG signing keys and its passphrase. The business has yet to discover proof that this key has been compromised or misused. Datadog stated…

Read more →