2013, Information Security, Malware and Social Engineering

Experts detail a new Kimsuky social engineering campaign

Security Affairs

JUNE 8, 2023

North Korea-linked APT Kimsuky has been linked to a social engineering campaign aimed at experts in North Korean affairs. SentinelLabs researchers uncovered a social engineering campaign by the North Korea-linked APT group Kimsuky that is targeting experts in North Korean affairs. ” concludes the report.

Social Engineering

Social Engineering Engineering Malware Risk

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware

Ransomware Hacking Encryption Penetration Testing

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Security Affairs

DECEMBER 1, 2022

In 2013, Yahoo suffered one of the worst data breaches in history, exposing over 3 billion user accounts. Near the holiday season of 2013, hackers exposed the credit and debit card information of over 110 million Target customers. Here are three of the worst data breaches that could have been avoided: Yahoo. Pierluigi Paganini.

Data breaches

Data breaches Passwords Social Engineering Encryption

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Kimsuky APT poses as journalists and broadcast writers in its attacks

Security Affairs

JUNE 3, 2023

Kimsuky cyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. At the end of October 2020, the US-CERT published a report on Kimusky’s recent activities that provided information on their TTPs and infrastructure. ” continues the advisory.

Social Engineering

Social Engineering Phishing System Administration Engineering

StrongPity APT spreads backdoored Android Telegram app via fake Shagle site

Security Affairs

JANUARY 10, 2023

StrongPity APT group has been active since at least 2013, it’s responsible for cyberespionage campaigns against Turkish targets. The group used zero-day exploits, social engineering tricks, and Trojanized software installers to deliver malware to their victims. ” continues the report. ” concludes the report.

Mobile

Mobile Social Engineering Malware Data collection

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

According to the security firm, the group is financially motivated, its cyberespionage campaign hit high value targets such as government and educational institutions, religious movements, pro-democracy and human rights organisations in Hong Kong, Covid-19 research organisations, gambling and cryptocurrency companies, and the media.

Cryptocurrency

Cryptocurrency Social Engineering Media Phishing

350 million decrypted email addresses left exposed on an unsecured server

Security Affairs

AUGUST 27, 2020

Screenshot from the latest forum discussion about RepWatch in 2013: The CSV files appear to have included the same set of 350 million unique emails, separated into three groups: hashed, hashed and salted, and unencrypted files. Watch out for potential spam messages and phishing emails.

Social Engineering

Social Engineering Passwords Marketing Phishing

Phishing: What Everyone in Your Organization Needs to Know

NopSec

FEBRUARY 15, 2017

How Phishing Works: Social Engineering The term “phishing” is broadly defined as sending an email that falsely claims to be from a legitimate organization. All of them rely on social engineering, a term that describes methods of deception used to coerce a victim into giving up valuable information.

Phishing

Phishing Social Engineering Engineering Healthcare

Growing Cyber Threats to the Energy and Industrial Sectors

NopSec

DECEMBER 7, 2016

Remember Shamoon, the malware that disabled some 35,000 computers at one of the world’s largest oil companies in 2012? When the malware hit Saudi Aramco four years ago, it propelled the company into a technological dark age, forcing the company to rely on typewriters and faxes while it recovered.

Cyber threats

Cyber threats Cyber Attacks Ransomware Manufacturing

The Most Common Types of Malware in 2021

CyberSecurity Insiders

JANUARY 31, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Malware

Malware Computers and Electronics Adware Spyware

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Fifteen years after the launch of the microblogging social media platform, Twitter remains a dominant public forum for instant communication with individuals and organizations worldwide on a universe of topics, including #cybersecurity. Read more: Top IT Asset Management Tools for Security. Brian Krebs | @briankrebs.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Iran-linked APT42 is behind over 30 espionage attacks

Security Affairs

SEPTEMBER 11, 2022

APT42’s TTPs overlap with another Iran-linked APT group tracked as APT35 (aka ‘ Charming Kitten ‘, ‘ Phosphorus ‘, Newscaster , and Ajax Security Team) which made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media.

Surveillance

Surveillance Social Engineering Phishing Government

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Last Watchdog

FEBRUARY 28, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Cyber threats

Cyber threats Computers and Electronics Adware Spyware

Australian man charged with creating and selling the Imminent Monitor spyware

Security Affairs

AUGUST 1, 2022

The man created the malicious code, a remote access trojan (RAT), when he was 15 years old, and maintained its infrastructure from 2013 to 2019. The authorities believe the man earned between $300,000 and $400,000 from selling the malware. ” reads a press release published by the Australian Federal Police (AFP).

Spyware

Spyware Malware Cybercrime Hacking

Cyber Security Informer

Experts detail a new Kimsuky social engineering campaign

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Webinars

Trending Sources

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Webinars

Kimsuky APT poses as journalists and broadcast writers in its attacks

StrongPity APT spreads backdoored Android Telegram app via fake Shagle site

Financially motivated Earth Lusca threat actors targets organizations worldwide

350 million decrypted email addresses left exposed on an unsecured server

Phishing: What Everyone in Your Organization Needs to Know

Growing Cyber Threats to the Energy and Industrial Sectors

The Most Common Types of Malware in 2021

Top Cybersecurity Accounts to Follow on Twitter

Iran-linked APT42 is behind over 30 espionage attacks

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

Australian man charged with creating and selling the Imminent Monitor spyware

Stay Connected