Top

Category: Cyber-crime


Cyber-crime, Malware

Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware

November 22, 2022

Via: The Hacker News

A nascent Go-based malware known as Aurora Stealer is being increasingly deployed as part of campaigns designed to steal sensitive information from compromised hosts. “These infection chains leveraged phishing pages impersonating download pages of legitimate software, including cryptocurrency wallets or […]


Cyber-crime, Identity theft

Daixin Ransomware Gang Steals 5 Million AirAsia Passengers’ and Employees’ Data

November 21, 2022

Via: The Hacker News

The cybercrime group called Daixin Team has leaked sample data belonging to AirAsia, a Malaysian low-cost airline, on its data leak portal. The development comes a little over a week after the company fell victim to a ransomware attack on […]


Cyber-crime, Phishing

Luna Moth callback phishing campaign leverages extortion without malware

November 21, 2022

Via: CSO Online

Palo Alto’s Unit 42 has investigated several incidents linked to the Luna Moth group callback phishing extortion campaign targeting businesses in multiple sectors, including legal and retail. The analysis discovered that the threat actors behind the campaign leverage extortion without […]


Cyber-crime, Malware

Microsoft Warns of Cybercrime Group Delivering Royal Ransomware, Other Malware

November 18, 2022

Via: Security Week

DEV-0569 has been relying on malicious ads (malvertising), blog comments, fake forum pages, and phishing links for the distribution of malware. Over the past few months, however, Microsoft noticed that the threat actor has started using contact forms to deliver […]


Cyber warfare, Cyber-crime

Iranian Hackers Compromised a U.S. Federal Agency’s Network Using Log4Shell Exploit

November 17, 2022

Via: The Hacker News

Iranian government-sponsored threat actors have been blamed for compromising a U.S. federal agency by taking advantage of the Log4Shell vulnerability in an unpatched VMware Horizon server. The details, which were shared by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), […]


Cyber warfare, Cyber-crime

Russian hacktivists hit Ukrainian orgs with ransomware – but no ransom demands

November 14, 2022

Via: Help Net Security

The Ukrainian CERT (CERT-UA) has uncovered an attack campaign aimed at compromising Ukrainian organizations and irretrievably encrypting their files. To do that, they are leveraging a specific version of the Somnia ransomware that, “according to the attackers’ theoretical plan, does […]


Cyber-crime, Malware

CERT-UA warns of multiple Somnia ransomware attacks against organizations in Ukraine

November 14, 2022

Via: Security Affairs

The Government Computer Emergency Response Team of Ukraine CERT-UA is investigating multiple attacks against organizations in Ukraine that involved a new piece of ransomware called Somnia. Government experts attribute the attacks to the group ‘From Russia with Love’ (FRwL) (aka […]


Cyber warfare, Cyber-crime

Microsoft Blames Russian Hackers for Prestige Ransomware Attacks on Ukraine and Poland

November 11, 2022

Via: The Hacker News

Microsoft on Thursday attributed the recent spate of ransomware incidents targeting transportation and logistics sectors in Ukraine and Poland to a threat cluster that shares overlaps with the Russian state-sponsored Sandworm group. The attacks, which were disclosed by the tech […]


Cyber warfare, Cyber-crime, Threats & Malware, Vulnerabilities

Analysis of Russian Cyberspy Attacks Leads to Discovery of Windows Vulnerability

November 10, 2022

Via: Security Week

Also referred to as Cozy Bear, the Dukes, and Yttrium, APT29 is a Russian cyberespionage group likely sponsored by the Russian Foreign Intelligence Service (SVR). The group is believed to be responsible for multiple high-profile attacks, including the 2016 targeting […]


Cyber warfare, Cyber-crime

Russian hackers to blame for approximately 75% of ransomware incidents in USA

November 7, 2022

Via: Panda Security

The U.S. Department of the Treasury (USDT) published a press release that includes the main findings of an analysis by the U.S. Treasury’s Financial Crimes Enforcement Network (FinCEN). The report confirms that the system supporting electronic filings of Bank Secrecy […]


Cyber warfare, Cyber-crime

Researchers Detail New Malware Campaign Targeting Indian Government Employees

November 4, 2022

Via: The Hacker News

The Transparent Tribe threat actor has been linked to a new campaign aimed at Indian government organizations with trojanized versions of a two-factor authentication solution called Kavach. “This group abuses Google advertisements for the purpose of malvertising to distribute backdoored […]


Cyber-crime, Identity theft

Ransomware Group Threatens to Leak Data Stolen From Car Parts Giant Continental

November 4, 2022

Via: Security Week

On its Tor-based leak website, the group says all files — the exact quantity of data or its type is not being specified — will be published on November 4, three hours after the publication of this article. Continental did […]


Cyber-crime, Mobile, Mobile security, Phishing

Outmaneuvering cybercriminals by recognizing mobile phishing threats’ telltale markers

November 4, 2022

Via: Help Net Security

Preventative medicine has long been recognized as a vital approach in safeguarding our physical health. We take a variety of tests and assessments so that doctors can uncover key biological markers that may indicate the potential development of certain diseases […]


Cyber warfare, Cyber-crime

OPERA1ER APT Hackers Targeted Dozens of Financial Organizations in Africa

November 3, 2022

Via: The Hacker News

A French-speaking threat actor dubbed OPERA1ER has been linked to a series of more than 30 successful cyber attacks aimed at banks, financial services, and telecom companies across Africa, Asia, and Latin America between 2018 and 2022. According to Singapore-headquartered […]


Cyber-crime, Malware

Over 250 US News Websites Deliver Malware via Supply Chain Attack

November 3, 2022

Via: Security Week

Cybersecurity company Proofpoint reported on Wednesday that a threat actor it tracks as TA569 appears to be behind the attack. The hackers have targeted an unnamed media company that serves many news outlets in the US. The service provider delivers […]


Cyber-crime, Identity theft

Group indicted for breaching CPA, tax preparation firms via stolen credentials

November 2, 2022

Via: Help Net Security

United States Attorney Roger B. Handberg announces the partial unsealing of an indictment charging eight individuals with Racketeer Influenced and Corrupt Organizations (RICO) conspiracy. Four have also been charged with wire fraud conspiracy and aggravated identity theft. If convicted, each […]


Cyber-crime, Phishing

Hackers Stole Source Code, Personal Data From Dropbox Following Phishing Attack

November 2, 2022

Via: Security Week

The file hosting giant said it learned about the breach on October 14, after being alerted by GitHub. A few weeks earlier, GitHub had warned that some of its users had been targeted in a phishing campaign impersonating the ​​continuous […]


Cyber-crime, Phishing

Bed Bath & Beyond Investigating Data Breach After Employee Falls for Phishing Attack

November 1, 2022

Via: Security Week

Only few details have been shared by the retailer as the investigation is ongoing. The company explained that it became aware of unauthorized access to some data after an employee was targeted in a ‘phishing scam’ in October. The hacker […]


Cyber-crime, Malware

Researchers Uncover Stealthy Techniques Used by Cranefly Espionage Hackers

October 28, 2022

Via: The Hacker News

A recently discovered hacking group known for targeting employees dealing with corporate transactions has been linked to a new backdoor called Danfuan. This hitherto undocumented malware is delivered via another dropper called Geppei, researchers from Symantec, by Broadcom Software, said […]


Cyber warfare, Cyber-crime

Slovak, Polish Parliaments Hit by Cyberattacks

October 28, 2022

Via: Security Week

“The attack was multi-directional, including from inside the Russian Federation,” the Polish Senate said in a statement. Polish Senate speaker Tomasz Grodzki said it may be linked to the Senate’s vote Wednesday declaring the Russian government a “terrorist regime”. The […]