Tag: www.infosecurity-magazine.com

DoJ Distributes $18.5m to Western Union Fraud Victims

The Justice Department has begun the latest round of fraud reimbursement from the Western Union Remission Fund This article has been indexed from www.infosecurity-magazine.com Read the original article: DoJ Distributes $18.5m to Western Union Fraud Victims

DDoS Attacks Double With Governments Most Targeted

Distributed denial of service attacks continue to increase, with government the most targeted vertical This article has been indexed from www.infosecurity-magazine.com Read the original article: DDoS Attacks Double With Governments Most Targeted

Spyware Vendors’ Nebulous Ecosystem Helps Them Evade Sanctions

The secret web of at least 435 entities across 42 countries making up the spyware landscape facilitates unpunished security and human rights violations, the Atlantic Council found This article has been indexed from www.infosecurity-magazine.com Read the original article: Spyware Vendors’…

US and Allies Accuse Russian Military of Destructive Cyber-Attacks

The joint government advisory highlighted the cyber activities of Unit 29155, which has launched destructive cyber-attacks against critical infrastructure globally This article has been indexed from www.infosecurity-magazine.com Read the original article: US and Allies Accuse Russian Military of Destructive Cyber-Attacks

UK Signs Council of Europe AI Convention

The first legally binding international treaty on AI was adopted by all 46 Council of Europe member states in May 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Signs Council of Europe AI Convention

OnlyFans Hackers Targeted With Infostealer Malware

Hackers interested in targeting OnlyFans users have themselves been singled out by an infostealing campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: OnlyFans Hackers Targeted With Infostealer Malware

US Government Set Out to Improve Internet Routing Security

The US White House Office of the National Cyber Director proposes improving internet security by protecting the Border Gateway Protocol This article has been indexed from www.infosecurity-magazine.com Read the original article: US Government Set Out to Improve Internet Routing Security

North Korea Targeting Crypto Industry, Says FBI

US law enforcement is tracking aggressive social engineering attacks against cryptocurrency operations This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korea Targeting Crypto Industry, Says FBI

Red Teaming Tool Abused for Malware Deployment

Cisco Talos has assessed that red teaming tool MacroPack is being abused by various threat actors in different geographies to deploy malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Red Teaming Tool Abused for Malware Deployment

Initial Access Brokers Target $2bn Revenue Companies

Cyberint claims that initial access brokers target companies with average revenue of nearly $2bn This article has been indexed from www.infosecurity-magazine.com Read the original article: Initial Access Brokers Target $2bn Revenue Companies

APP Fraud Dominates as Scams Hit All-Time High

UK’s Financial Ombudsman warns fraud and scams hit a record high in Q2 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: APP Fraud Dominates as Scams Hit All-Time High

Civil Rights Groups Call For Spyware Controls

Civil society and journalists’ organizations in Europe ask the EU to take steps to regulate spyware technologies This article has been indexed from www.infosecurity-magazine.com Read the original article: Civil Rights Groups Call For Spyware Controls

Active Ransomware Groups Surge by 56% in 2024

Searchlight Cyber observed a 56% rise in active ransomware groups in H1 2024, demonstrating the growing fragmentation of the ransomware landscape This article has been indexed from www.infosecurity-magazine.com Read the original article: Active Ransomware Groups Surge by 56% in 2024

Three Plead Guilty to Running MFA Bypass Site

Three British men are facing jail after pleading guilty to running an MFA bypass site dubbed “OTP Agency” This article has been indexed from www.infosecurity-magazine.com Read the original article: Three Plead Guilty to Running MFA Bypass Site

TfL Claims Cyber-Incident is Not Impacting Services

London’s transport body, TfL, is playing down the impact of a cybersecurity incident on its services This article has been indexed from www.infosecurity-magazine.com Read the original article: TfL Claims Cyber-Incident is Not Impacting Services

US Authorities Issue RansomHub Ransomware Alert

Agencies under the #Stopransomware banner publish details of RansomHub group’s tactics, indicators of compromise and essential mitigations This article has been indexed from www.infosecurity-magazine.com Read the original article: US Authorities Issue RansomHub Ransomware Alert

Scores of Organizations Hit By Novel Voldemort Malware

Proofpoint has uncovered a new cyber-espionage campaign deploying new malware dubbed “Voldemort” This article has been indexed from www.infosecurity-magazine.com Read the original article: Scores of Organizations Hit By Novel Voldemort Malware

Published Vulnerabilities Surge by 43%

Forescout highlighted a 43% increase in published vulnerabilities in H1 2024, with attackers targeting flaws in VPNs and network infrastructure for initial access This article has been indexed from www.infosecurity-magazine.com Read the original article: Published Vulnerabilities Surge by 43%

Russian Hackers Use Commercial Spyware Exploits to Target Victims

In a campaign targeting Mongolian government websites, Russian-backed APT29 leveraged exploits previously used by spyware vendors NSO Group and Intellexa This article has been indexed from www.infosecurity-magazine.com Read the original article: Russian Hackers Use Commercial Spyware Exploits to Target Victims

North Korean Hackers Launch New Wave of npm Package Attacks

North Korean groups exploited npm packages in coordinated attacks, targeting developers and cryptocurrency wallet browser extensions This article has been indexed from www.infosecurity-magazine.com Read the original article: North Korean Hackers Launch New Wave of npm Package Attacks

BlackByte Adopts New Tactics, Targets ESXi Hypervisors

BlackByte, linked to the Conti group, exploited VMware ESXi CVE-2024-37085 to control virtual machines This article has been indexed from www.infosecurity-magazine.com Read the original article: BlackByte Adopts New Tactics, Targets ESXi Hypervisors

Unpatched CCTV Cameras Exploited to Spread Mirai Variant

Threat actors are exploiting a vulnerability found in CCTV cameras used in critical infrastructure to spread a Mirai malware variant This article has been indexed from www.infosecurity-magazine.com Read the original article: Unpatched CCTV Cameras Exploited to Spread Mirai Variant

Surge in New Scams as Pig Butchering Dominates

Chainalysis report reveals a likely increase in new internet scams this year as fraudsters adapt to increasing enforcement efforts This article has been indexed from www.infosecurity-magazine.com Read the original article: Surge in New Scams as Pig Butchering Dominates

Iranian Hackers Secretly Aid Ransomware Attacks on US

CISA and the FBI warned that Iranian APT group, Fox Kitten, has helped ransomware groups to attack US organizations since 2017 This article has been indexed from www.infosecurity-magazine.com Read the original article: Iranian Hackers Secretly Aid Ransomware Attacks on US

Ransomware Attacks Exposed 6.7 Million Records in US Schools

Ransomware attacks on US schools and colleges have surged, with 491 incidents since 2018, affecting over 8000 institutions This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Attacks Exposed 6.7 Million Records in US Schools

Iran-Backed Peach Sandstorm Hackers Deploy New Tickler Backdoor

The hacking subsidiary of the Iranian Islamic Revolutionary Guard Corps (RGC) has targeted satellite, communications, oil and gas and government sectors in the US and UAE This article has been indexed from www.infosecurity-magazine.com Read the original article: Iran-Backed Peach Sandstorm…

Money Laundering Dominates UK Fraud Cases

KPMG research finds money laundering accounted for the majority of fraud cases heard in the first half of 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Money Laundering Dominates UK Fraud Cases

South Korean Spies Exploit WPS Office Zero-Day

ESET uncovers a South Korean cyber-espionage campaign featuring a zero-day exploit for WPS Office This article has been indexed from www.infosecurity-magazine.com Read the original article: South Korean Spies Exploit WPS Office Zero-Day

MOVEit Hack Exposed Personal Data of Half Million TDECU Users

The Texas Dow Employees Credit Union told the Maine Attorney General the MOVEit data breach compromised information of over 500,000 members This article has been indexed from www.infosecurity-magazine.com Read the original article: MOVEit Hack Exposed Personal Data of Half Million…

FBI Flawed Data Handling Raises Security Concerns

A US Justice Department watchdog has found “significant weaknesses” in the FBI’s physical and online media storage and disposal processes This article has been indexed from www.infosecurity-magazine.com Read the original article: FBI Flawed Data Handling Raises Security Concerns

Suspected Cyber-Attack Causes Travel Chaos at Seattle Airport

The Port of Seattle revealed system outages at the city’s airport may have been caused by a cyber-attack, affecting early Labor Day travel This article has been indexed from www.infosecurity-magazine.com Read the original article: Suspected Cyber-Attack Causes Travel Chaos at…

Uber Hit With €290m GDPR Fine

The Dutch data protection regulator has imposed a €290m GDPR fine on Uber for storing driver data in the US without adequate safeguards This article has been indexed from www.infosecurity-magazine.com Read the original article: Uber Hit With €290m GDPR Fine

A Third of Organizations Suffer SaaS Data Breaches

AppOmni report claims number of companies suffering SaaS-related data breaches has jumped five percentage points over past year This article has been indexed from www.infosecurity-magazine.com Read the original article: A Third of Organizations Suffer SaaS Data Breaches

NSA Releases Guide to Combat Living Off the Land Attacks

The National Security Agency has published a guide to help organizations defend against APT attacks that leverage living off the land techniques This article has been indexed from www.infosecurity-magazine.com Read the original article: NSA Releases Guide to Combat Living Off…

Georgia Tech Sued Over Cybersecurity Violations

The US government has filed a lawsuit against Georgia Tech for alleged cybersecurity violations as a Department of Defense contractor This article has been indexed from www.infosecurity-magazine.com Read the original article: Georgia Tech Sued Over Cybersecurity Violations

YouTube Launches AI Tool to Recover Hacked Accounts

YouTube’s new AI troubleshooting tool is designed to help users recover and secure their accounts after they’ve been hacked This article has been indexed from www.infosecurity-magazine.com Read the original article: YouTube Launches AI Tool to Recover Hacked Accounts

Liverpool Fans Lose Big in Premier League Ticket Scams

Liverpool fans were the most frequent and highest-value targets for ticket scams last season, losing over £17,000 to fraudsters This article has been indexed from www.infosecurity-magazine.com Read the original article: Liverpool Fans Lose Big in Premier League Ticket Scams

Company Fined $1m for Fake Joe Biden AI Calls

FCC charges Lingo Telecom with $1m fine over voice deepfake during the 2024 New Hampshire primary election This article has been indexed from www.infosecurity-magazine.com Read the original article: Company Fined $1m for Fake Joe Biden AI Calls

Security Flaws in UK Political Party Donation Platforms Exposed

The donation websites of the UK’s seven major political parties are missing critical security features to protect the accounts of donors, according to DataDome This article has been indexed from www.infosecurity-magazine.com Read the original article: Security Flaws in UK Political…

CISA to Get New Headquarters as $524M Contract Awarded

The building, located in Washington, DC, will be the new home of the US Cybersecurity and Infrastructure Security This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA to Get New Headquarters as $524M Contract Awarded

Healthcare Hit by a Fifth of Ransomware Incidents

Healthcare has been the most targeted sector according to Barracuda analysis of 200 reported ransomware incidents from August 2023 to July 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Healthcare Hit by a Fifth of Ransomware…

Most Ransomware Attacks Now Happen at Night

Malwarebytes report warns security teams to be on high alert for ransomware attacks at night This article has been indexed from www.infosecurity-magazine.com Read the original article: Most Ransomware Attacks Now Happen at Night

Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle

Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction This article has been indexed from www.infosecurity-magazine.com Read the original article: Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle

Iran Behind Trump Campaign Hack, US Government Confirms

The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections This article has been indexed from www.infosecurity-magazine.com Read the original article:…

Microsoft Apps for macOS Exposed to Library Injection Attacks

Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Apps for macOS Exposed to…

Ransomware Resilience Drives Down Cyber Insurance Claims

Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments This article has been indexed from www.infosecurity-magazine.com Read the original article: Ransomware Resilience Drives Down Cyber Insurance Claims

NCSC Opens Cyber Resilience Audit Scheme to Applicants

The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Opens Cyber Resilience Audit Scheme to Applicants

Unicoin Staff Locked Out of G-Suite in Mystery Attack

Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach This article has been indexed from www.infosecurity-magazine.com Read the original article: Unicoin Staff Locked Out of G-Suite in Mystery Attack

Microsoft Mandates MFA for All Azure Sign-Ins

Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Mandates MFA for All Azure Sign-Ins

Florida-Based National Public Data Confirms Data Breach

The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records This article has been indexed from www.infosecurity-magazine.com Read the original article: Florida-Based National Public Data Confirms Data Breach

Geopolitical Tensions Drive Explosion in DDoS Attacks

Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions This article has been indexed from www.infosecurity-magazine.com Read the original article: Geopolitical Tensions Drive Explosion in DDoS Attacks

Russia’s FSB Behind Massive Phishing Espionage Campaign

Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russian-aligned group This article has been indexed from www.infosecurity-magazine.com Read the original article: Russia’s FSB Behind Massive Phishing Espionage Campaign

Google Warns of Iranian Cyber-Attacks on Presidential Campaigns

Google has highlighted sophisticated spearphishing attacks by Iranian state actor APT42 targeting individuals associated with the US Presidential campaign This article has been indexed from www.infosecurity-magazine.com Read the original article: Google Warns of Iranian Cyber-Attacks on Presidential Campaigns