Advertisement
Top

Category: Threats & Malware

Threats and Malware


Hacker, Threats & Malware

LockBit Bounces Back Shortly After Takedown and Police Trolling

February 28, 2024

Via: SecureWorld

In a coordinated international law enforcement operation on February 19, the notorious LockBit ransomware gang had its Dark Web infrastructure seized by authorities. LockBit is accused of extorting hundreds of companies and organizations globally by encrypting their data and demanding […]


Threats & Malware, Virus & Malware

China warns of fake digital currency wallets fleecing netizens

February 27, 2024

Via: The Register

China’s Ministry of Industry and Information Technology has warned local netizens that fake wallet apps for the nation’s central bank digital currency (CBDC) are already circulating and being abused by scammers. The digital renminbi – aka the e-Yuan or e-CNY […]


Data loss, Threats & Malware

Giant leak reveals Chinese infosec vendor I-Soon is one of Beijing’s cyber-attackers for hire

February 22, 2024

Via: The Register

A cache of stolen documents posted to GitHub appears to reveal how a Chinese infosec vendor named I-Soon offers rent-a-hacker services for Beijing. The trove appeared on GitHub last week and contains hundreds of documents documenting I-Soon’s activities. Analysis of […]


Threats & Malware, Virus & Malware

LockBit registered nearly 200 “affiliates” over the past two years

February 22, 2024

Via: Tech Xplore

More information about the business operations of the LockBit ransomware gang have emerged, a day after the UK National Crime Agency (NCA) and partners were able to apparently disrupt the group and deface its leak site. According to The Register, […]


Threats & Malware, Vulnerabilities

Multiple XSS flaws in Joomla can lead to remote code execution

February 22, 2024

Via: Security Affairs

The maintainers of the Joomla! Project released Joomla 5.0.3 and 4.4.3 versions that addressed the following vulnerabilities in the popular content management system (CMS): [20240201] –CVE-2024-21722 Core – Insufficient session expiration in MFA management views: The MFA management features did […]


Data loss, Threats & Malware

LockBit leaks expose nearly 200 affiliates and bespoke data-stealing malware

February 21, 2024

Via: The Register

The latest revelation from law enforcement authorities in relation to this week’s LockBit leaks is that the ransomware group had registered nearly 200 “affiliates” over the past two years. Affiliates are those people who buy into the gang’s ransomware-as-a-service model, […]


Data loss, Threats & Malware

Wyze admits 13,000 users could have viewed strangers’ camera feeds

February 20, 2024

Via: The Register

Smart home security camera slinger Wyze is telling customers that a cybersecurity “incident” allowed thousands of users to see other people’s camera feeds. Thanks to a helpful Reg reader who sent a customer email over to us, we know that […]


Threats & Malware, Virus & Malware

Cactus ransomware gang claims the theft of 1.5TB of data from Energy management and industrial automation firm Schneider Electric

February 20, 2024

Via: Security Affairs

The Cactus ransomware group claims responsibility for pilfering 1.5TB of data from the Energy management and industrial automation giant Schneider Electric. Schneider Electric is a multinational company that specializes in energy management, industrial automation, and digital transformation. In January, BleepingComputer […]


Hacker, Threats & Malware

Operation Cronos: law enforcement disrupted the LockBit operation

February 19, 2024

Via: Security Affairs

A joint law enforcement action, code-named Operation Cronos, conducted by law enforcement agencies from 11 countries has disrupted the LockBit ransomware operation. Below is the image of the Tor leak site of the Lockbit ransomware gang that was seized by […]


Hacker, Threats & Malware

Cutting kids off from the dark web – the solution can only ever be social

February 16, 2024

Via: The Register

The murder of 16-year-old schoolgirl Brianna Ghey has kickstarted a debate around limiting children’s access to the dark web in the UK, with experts highlighting the difficulty in achieving this. Ciaran Martin, the National Cyber Security Centre’s first CEO and […]


Hacker, Threats & Malware

Zeus, IcedID malware kingpin faces 40 years in slammer

February 16, 2024

Via: The Register

A Ukrainian cybercrime kingpin who ran some of the most pervasive malware operations faces 40 years in prison after spending nearly a decade on the FBI’s Cyber Most Wanted List. Vyacheslav Igorevich Penchukov, 37, pleaded guilty this week in the […]


Threats & Malware, Virus & Malware

Wyze users slammed by service outage, severing connection to app and cameras

February 16, 2024

Via: TechRadar

Smart home brand Wyze Labs recently suffered through a massive service outage with users flooding the internet with reports stating their security cameras no longer work. The issues people are experiencing vary case by case. There are posts on the […]


Threats & Malware, Vulnerabilities

Zoom stomps critical privilege escalation bug plus 6 other flaws

February 15, 2024

Via: The Register

Video conferencing giant Zoom today opened up about a fresh batch of security vulnerabilities affecting its products, including a critical privilege escalation flaw. Tracked as CVE-2024-24691 with a CVSS score of 9.6, Zoom says the vulnerability may enable privilege escalation […]


Threats & Malware, Virus & Malware

China’s Volt Typhoon spies broke into emergency network of ‘large’ US city

February 14, 2024

Via: The Register

The Chinese government’s Volt Typhoon spy team has apparently already compromised a large US city’s emergency services network and has been spotted snooping around America’s telecommunications’ providers as well. According to a report on Tuesday by industrial cybersecurity biz Dragos, […]


Threats & Malware, Virus & Malware

Prudential Financial finds cybercrims lurking inside its IT systems

February 14, 2024

Via: The Register

Prudential Financial, the second largest life insurance company in the US and eight largest worldwide, is dealing with a digital break-in that exposed some internal company and customer records to a criminal group. The Fortune Global 500 and Fortune 500 […]


Threats & Malware, Virus & Malware

Korean eggheads crack Rhysida ransomware and release free decryptor tool

February 13, 2024

Via: The Register

Some smart folks have found a way to automatically unscramble documents encrypted by the Rhysida ransomware, and used that know-how to produce and release a handy recovery tool for victims. Rhysida is a newish ransomware gang that has been around […]


Data loss, Threats & Malware

Infosys subsidiary named as source of Bank of America data leak

February 13, 2024

Via: The Register

Indian tech services giant Infosys has been named as the source of a data leak suffered by the Bank of America. Infosys disclosed the breach in a November 3, 2023, filing [PDF] that revealed its US subsidiary Infosys McCamish Systems LLC (IMS) […]


Threats & Malware, Virus & Malware

Meet VexTrio, a network of 70K hijacked websites crooks use to sling malware, fraud

February 12, 2024

Via: The Register

More than 70,000 presumably legit websites have been hijacked and drafted into a network that crooks use to distribute malware, serve phishing pages, and share other dodgy stuff, according to researchers. This mesh of compromised sites is known as VexTrio, […]


Data loss, Network security, Threats & Malware

Jet engine dealer to major airlines discloses ‘unauthorized activity’

February 12, 2024

Via: The Register

Willis Lease Finance Corporation has admitted to US regulators that it fell prey to a “cybersecurity incident” after data purportedly stolen from the biz was posted to the Black Basta ransomware group’s leak blog. The form 8-K filed with the […]


Data loss, Threats & Malware

Europe’s largest caravan club admits wide array of personal data potentially accessed

February 12, 2024

Via: The Register

The Caravan and Motorhome Club (CAMC) and the experts it drafted to help clean up the mess caused by a January cyberattack still can’t figure out whether members’ data was stolen. According to an update shared with members late last […]