November 21, 2023
Via: SecurelistAt Kaspersky, we constantly monitor the financial cyberthreat landscape, which includes threats to financial institutions, such as banks, and financially motivated threats, such as ransomware, that target a broader range of industries. As part of our Kaspersky Security Bulletin, we […]
November 20, 2023
Via: The RegisterIt’s that time of year again – NordPass has released its annual list of the most common passwords. And while it seems some of you took last year’s chiding to heart, most of you arguably swapped bad for worse. Password […]
November 20, 2023
Via: The RegisterThe Rhysida ransomware group says it’s behind the highly disruptive October cyberattack on the British Library, leaking a snippet of stolen data in the process. A low-res image shared to its leak site appears to show a handful of passport […]
Threats & Malware, Virus & Malware
November 16, 2023
Via: The RegisterRoyal Mail’s parent International Distributions Services has revealed for the first time the infrastructure costs associated with its January ransomware attack. LockBit’s attack has driven costs up across various areas of the Brit business, but improvements to the corporation’s Heathrow […]
November 16, 2023
Via: The RegisterRackspace’s costs from last year’s ransomware infection continue to mount: the cloud hosting biz told America’s financial watchdog, the SEC, its total expenses to date regarding that cyberattack have reached $12 million – so far. The extortionware raid on the […]
Threats & Malware, Virus & Malware
November 16, 2023
Via: The RegisterAffiliates of the ALPHV/BlackCat ransomware-as-a-service operation are turning to malvertising campaigns to establish an initial foothold in their victims’ systems. Paid adverts for popular business software such as Slack and Cisco AnyConnect are being used to lure corporate victims into […]
November 15, 2023
Via: The RegisterNovel weaknesses in Google Workspace have been exposed by researchers, with exploits potentially leading to ransomware attacks, data exfiltration, and password decryption. Researchers at Bitdefender say the methods could also be used to access Google Cloud Platform (GCP) with custom […]
Threats & Malware, Virus & Malware
November 13, 2023
Via: Security AffairsThe Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022). At the end of October, the Lockbit ransomware […]
November 10, 2023
Via: SecureWorldThe Industrial and Commercial Bank of China (ICBC), recognized as the world’s largest commercial bank, has fallen victim to a ransomware attack. The incident, which unfolded on November 8, 2023, has sent ripples through the global financial community, emphasizing the […]
Threats & Malware, Virus & Malware
November 10, 2023
Via: Security AffairsMicrosoft reported the exploitation of a zero-day vulnerability, tracked as CVE-2023-47246, in the SysAid IT support software in limited attacks. The IT giant linked the attacks to the Clop ransomware gang (aka Lace Tempest). The company reported the flaw to […]
November 8, 2023
Via: SecureWorldThe United States Treasury Department’s Office of Foreign Assets Control (OFAC) has taken decisive action against Ekaterina Zhdanova, a Russian national, for her significant role in laundering and transferring funds using virtual currency on behalf of Russian elites and ransomware […]
November 2, 2023
Via: The RegisterBoeing has acknowledged a cyber incident just days after ransomware gang LockBit reportedly exfiltrated sensitive data from the aerospace defence contractor. “We are aware of a cyber incident impacting elements of our parts and distribution business,” Boeing told The Register. […]
Threats & Malware, Vulnerabilities
November 2, 2023
Via: The RegisterSecurity researchers have confirmed that ransomware criminals are capitalizing on a maximum-severity vulnerability in Apache ActiveMQ. Announced on October 25 and tracked as CVE-2023-46604, the insecure deserialization vulnerability allows for remote code execution (RCE) on affected versions. “Apache ActiveMQ is […]
Threats & Malware, Vulnerabilities
November 2, 2023
Via: SecureWorldIn the ever-evolving landscape of cybersecurity threats, the discovery of serious vulnerabilities can send shockwaves through the digital world. One such recent incident that has captured the attention of security professionals is the exploitation of a critical vulnerability known as […]
November 1, 2023
Via: Natalie DunnRansomware attacks have surged in recent years, targeting businesses, government institutions, healthcare facilities, and even individuals, often with devastating consequences. These attacks not only disrupt operations but also pose significant financial, reputational, and legal risks for victims. As organizations grapple […]
October 30, 2023
Via: The RegisterNotorious ransomware gang LockBit has reportedly exfiltrated “a tremendous amount of sensitive data from aerospace outfit Boeing. VX underground published a screenshot of Lockbit’s announcement, and threat to expose data if Boeing does not engage with it by November 2nd. […]
October 30, 2023
Via: The RegisterStanford University has confirmed it is “investigating a cybersecurity incident” after an attack last week by the Akira ransomware group. Akira claimed the attack on Stanford on October 27, saying it had stolen 430 GB worth of data from the […]
October 26, 2023
Via: TechRadarFamous watchmaker Seiko has confirmed that the cyberattack it suffered in July 2023 was indeed a cybersecurity incident carried out by the infamous BlackCat ransomware gang. In an incident report published on October 25 (the third one in the series), […]
Application security, Security
October 23, 2023
Via: The RegisterThere is no longer an off button for businesses and organizations, no closed signs, or downtime. This means enterprise IT operations and data assets must be protected round the clock in all operating environments. In the past this has often […]
October 23, 2023
Via: SecureWorldLaw enforcement authorities from 11 countries last week conducted a coordinated takedown of the Ragnar Locker ransomware group, delivering a major blow to one of the most dangerous ransomware operations of recent years. The operation was led by Europol and […]