December 14, 2023
Via: The RegisterKarakurt, a particularly nasty extortion gang that uses “extensive harassment” to pressure victims into handing over millions of dollars in ransom payments after compromising their IT infrastructure, pose a “significant challenge” for network defenders, we’re told. This is largely because […]
November 20, 2023
Via: The RegisterQuick show of hands: whose data hasn’t been stolen in the mass exploitation of Progress Software’s vulnerable MOVEit file transfer application? Anyone? According to security shop Emsisoft, 2,620 organizations and more than 77 million individuals have been impacted to date, […]
November 13, 2023
Via: The RegisterDanish critical infrastructure faced the biggest online attack in the country’s history in May, according to SektorCERT, Denmark’s specialist organization for the cybersecurity of critical kit. Detailing the attack waves in a report, it revealed that 22 companies were breached […]
Threats & Malware, Vulnerabilities
November 2, 2023
Via: The RegisterSecurity researchers have confirmed that ransomware criminals are capitalizing on a maximum-severity vulnerability in Apache ActiveMQ. Announced on October 25 and tracked as CVE-2023-46604, the insecure deserialization vulnerability allows for remote code execution (RCE) on affected versions. “Apache ActiveMQ is […]
October 31, 2023
Via: The RegisterFor a period of two years between September 2019 and September 2021, two Americans and two Russians allegedly compromising the taxi dispatch system at John F. Kennedy International Airport in New York to sell cabbies a place at the front […]
October 31, 2023
Via: The RegisterThe US has approved mandatory data breach reporting requirements that impose a 30-day deadline for non-banking financial organizations to report incidents. The amendment to the Federal Trade Commission’s (FTC) Safeguards Rule, which aims to hold the US finance sector to […]
October 30, 2023
Via: The RegisterStanford University has confirmed it is “investigating a cybersecurity incident” after an attack last week by the Akira ransomware group. Akira claimed the attack on Stanford on October 27, saying it had stolen 430 GB worth of data from the […]
October 16, 2023
Via: The RegisterAn unspecified security incident is forcing many state courts across Kansas to rely on paper filings, and it may have continue to do so for weeks, a state judge has warned. The Kansas Supreme Court issued a brief notice that […]
October 9, 2023
Via: The RegisterVolex, the British integrated maker of critical power and data transmission cables, confirmed this morning that intruders accessed data after breaking into its tech infrastructure. The AIM-listed business said that it “enacted security protocols and took immediate steps to stop […]
Threats & Malware, Virus & Malware
October 6, 2023
Via: The RegisterMost of us dislike cyber criminals, but not many of us dislike them quite as much as Anthony Cusimano. The director of technical marketing at storage company Object First was on the sharp end of an identity theft attack after […]
September 21, 2023
Via: The RegisterDays after a miscreant boasted leaking a 3GB-plus database from TransUnion containing financial information on 58,505 people, the credit-checking agency has claimed the info was actually swiped from a third party. On Sunday, a thief using the handle USDoD shared […]
September 19, 2023
Via: The RegisterThe Clorox Company, makers of bleach and other household cleaning products, doesn’t expect operations to return to normal until near month end as it combs over “widescale disruption to operations” caused by cyber baddies. The $2 billion turnover biz, whose […]
September 6, 2023
Via: The Hacker NewsA previously undocumented “phishing empire” has been linked to cyber attacks aimed at compromising Microsoft 365 business email accounts over the past six years. “The threat actor created a hidden underground market, named W3LL Store, that served a closed community […]
August 23, 2023
Via: The Hacker NewsA Syrian threat actor named EVLF has been outed as the creator of malware families CypherRAT and CraxsRAT. “These RATs are designed to allow an attacker to remotely perform real-time actions and control the victim device’s camera, location, and microphone,” […]
August 15, 2023
Via: The Hacker NewsA “staggering” 120,000 computers infected by stealer malware have credentials associated with cybercrime forums, many of them belonging to malicious actors. The findings come from Hudson Rock, which analyzed data collected from computers compromised between 2018 to 2023. “Hackers around […]
August 10, 2023
Via: The Hacker NewsInterpol has announced the takedown of a phishing-as-a-service (PhaaS) platform called 16Shop, in addition to the arrests of three individuals in Indonesia and Japan. 16Shop specialized in the sales of phishing kits that other cybercriminals can purchase to mount phishing […]
August 7, 2023
Via: The Hacker NewsThe U.S. Federal Bureau of Investigation (FBI) is warning about cyber crooks masquerading as legitimate non-fungible token (NFT) developers to steal cryptocurrency and other digital assets from unsuspecting users. In these fraudulent schemes, criminals either obtain direct access to NFT […]
June 13, 2023
Via: The Hacker NewsThe U.S. Department of Justice (DoJ) has charged two Russian nationals in connection with masterminding the 2014 digital heist of the now-defunct cryptocurrency exchange Mt. Gox. According to unsealed indictments released last week, Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, […]
August 25, 2022
Via: Help Net SecurityAcronis researchers have concluded that ransomware continues to be the number one threat to large and medium-sized businesses, including government organizations. Nearly half of all reported breaches during the first half of 2022 involved stolen credentials, which enable phishing and […]
July 26, 2022
Via: Threat PostThe bloom is back on phishing attacks with criminals doubling down on fake messages abusing popular brands compared to the year prior. Microsoft, Facebook and French bank Crédit Agricole are the top abused brands in attacks, according to study on […]