Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The Have I Been Pwned data breach notification service now allows victims of the RedLine malware to check if their credentials have been stolen. SecurityAffairs – hacking, malware).

Accountability 128

Accountability Malware Data breaches Passwords 128

SecureList

MARCH 31, 2021

2020 was challenging for everyone: companies, regulators, individuals. As a result, 2020 was extremely eventful in terms of digital threats, in particular those faced by financial institutions. In 2020, the group tried its hand at the big extortion game with the VHD ransomware family. Methodology. Methodology.

Banking 121

Banking Phishing Malware Mobile 121

Krebs on Security

JUNE 1, 2023

This post is a deep dive on “ Megatraffer ,” a veteran Russian hacker who has practically cornered the underground market for malware focused code-signing certificates since 2015. More recently, it appears Megatraffer has been working with ransomware groups to help improve the stealth of their malware. account on Carder[.]su

Malware 251

Malware Cybercrime Software Antivirus 251

Security Affairs

FEBRUARY 24, 2020

Since end-December 2019 lampion malware has been noted as the most prominent malware targeting Portuguese organizations. Figure 1: Lampion malware email templates. Crooks are using compromised devices to access the banking portal in order to make online bank transfers to accounts they are controlling. com/P-14-7.dll

Malware 75

Malware Banking Antivirus Advertising 75

Bleeping Computer

JUNE 1, 2023

A previously unknown campaign involving the Hotabot botnet malware has targeted Spanish-speaking users in Latin America since at least November 2020, infecting them with a banking trojan and spam tool. [.]

Accountability 128

Accountability Banking Malware 128

SecureList

MAY 26, 2021

The statistics in this report cover the period from May 2020 to April 2021, inclusive. 70% of Internet user computers in the EU experienced at least one Malware-class attack. Attempted infections by malware designed to steal money via online access to bank accounts were logged on the devices of 79,315 users. Main figures.

Phishing 131

Phishing Malware Ransomware Adware 131

SecureList

FEBRUARY 15, 2021

In 2020: The share of spam in email traffic amounted to 50.37%, down by 6.14 Agentb malware family. Contact us to lose your money or account! In 2020, Bitcoin blackmailers stuck to their old scheme, demanding that their victims transfer money to a certain account and threatening adversity for failure to meet their demands.

Phishing 139

Phishing Malware Scams Accountability 139

Security Affairs

SEPTEMBER 18, 2020

Twitter announced that it will adopt new security measures to protect high-profile accounts during the upcoming election in the United States. Twitter announced new measures to protect high-profile accounts during the upcoming US Presidential election. ” reads the post published by the company.

Accountability 92

Accountability Passwords Advertising Hacking 92

SecureList

AUGUST 23, 2021

billion USD in 2021, which is slightly less than the total revenue in 2020 but still significantly above the pre-pandemic figures. Analysts predict that mobile gaming will account for $90.7 We examined malware and unwanted software disguised as popular PC and mobile games. Newzoo estimates the industry to gross 175.8

Adware 118

Adware Mobile Phishing Malware 118

Adam Levin

SEPTEMBER 23, 2020

Distracted by a pandemic, historic social unrest, a general election, fire tornados and murder hornets , the Trump administration seems intent on handing Republicans a prize equal to if not greater than the parade of federal judges appointed over the last 44 months—namely, an undercount in the 2020 decennial population census.

Cybersecurity 225

Cybersecurity Scams Phishing Manufacturing 225

Security Affairs

JANUARY 2, 2021

Below the list of the top stories of 2020. April 27 – Hacking Microsoft Teams accounts with a GIF image. Experts discovered how to take over Microsoft Teams accounts by just sending recipients a regular GIF, it works for both desktop and web Teams versions. SecurityAffairs – hacking, Top stories 2020).

Firewall 104

Firewall VPN Hacking Accountability 104

SecureList

FEBRUARY 21, 2022

But it is too early to celebrate: attacks are becoming more sophisticated in terms of both malware functionality and vectors. Experts also continued to find malware in apps on Google Play, despite Google’s efforts to keep threats off the platform. Map of infection attempts by mobile malware, 2021 ( download ).

Mobile 122

Mobile Malware Adware Banking 122

Hot for Security

APRIL 5, 2021

Bitdefender this week has published its annual Consumer Threat Landscape Report for 2020 underscoring some of the most prevalent cyber threats targeting regular users today. A key stat: cybercrime in 2020 was marked by a visible and aggressive targeting of the human layer. Android malware. Spam – quality over quantity.

Cybercrime 116

Cybercrime Ransomware Cyber threats Surveillance 116

SecureList

FEBRUARY 26, 2024

million malware, adware, and riskware attacks. The year’s trends Malware, adware, and riskware attacks on mobile devices dipped in February, only to rise steadily until the end of the year. The Trojan-SMS-type malware saw its activity decrease significantly, dropping six positions from 2022. of all threats detected.

Mobile 100

Mobile Malware Adware Banking 100

Security Affairs

MARCH 22, 2021

The Kaspersky ICS CERT published a report that provided details about the threat landscape for computers in the ICS engineering and integration sector in 2020. Kaspersky ICS CERT published a report that provided details about the threat landscape for ICS engineering and integration sector in 2020. In H2 2020, 39.3%

Engineering 127

Engineering VPN Accountability Software 127

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Accountability 98

Accountability Government Phishing Authentication 98

CyberSecurity Insiders

APRIL 13, 2021

McAfee released an ‘MVISION’ Cloud User Report on Tuesday stating that the year 2020 witnessed over 3.1 million cyber attacks on cloud user accounts. And most of them were malware related followed by account hijackings and targeted attacks against vulnerabilities. The post Over 3.1

Cyber Attacks 95

Cyber Attacks Accountability Retail Antivirus 95

Krebs on Security

FEBRUARY 26, 2023

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites. But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee.

Hacking 277

Hacking Social Engineering Phishing Scams 277

Malwarebytes

FEBRUARY 16, 2021

In short, in 2020, cyberthreats evolved. Today, we are showing readers just what that evolution looked like, in our State of Malware 2021 report. This report provides our most comprehensive analysis of last year’s malware trends, with breakdowns by malware category, malware type, operating system, region, industry, and more.

Malware 121

Malware Scams Spyware Healthcare 121

Security Affairs

OCTOBER 1, 2020

Twitter removed around 130 Iranian accounts for attempting to disrupt the public recent US Presidential Debate. The social media giant Twitter announced to have removed around 130 Iranian Twitter accounts that attempted to disrupt the public conversation during the recent first Presidential Debate for the US 2020 Presidential Election.

Accountability 133

Accountability Advertising Media Hacking 133

SecureList

FEBRUARY 27, 2023

Kaspersky mobile cyberthreat detection dynamics in 2020–2022 ( download ) Cybercriminals continued to use legitimate channels to spread malware. The spread of malware through Google Play continued as well. Harly malware programs were downloaded a total of 2.6 The number had been declining gradually since a 2020 increase.

Mobile 115

Mobile Malware Adware Banking 115

Security Affairs

OCTOBER 14, 2021

Since 2020, at least 130 different ransomware families have been active. The analysis of the temporal distribution of ransomware-related submissions revealed a sequence of peaks in the first two quarters of 2020. Second, attackers are using a range of different approaches, including well-known botnet malware and other RATs.

Ransomware 89

Ransomware Malware Accountability Hacking 89

Security Affairs

DECEMBER 4, 2020

VMware addressed CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. VMware has finally released security updates to fix the CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector.

Passwords 107

Passwords Accountability Malware Hacking 107

Security Affairs

DECEMBER 1, 2020

The critical remote code execution (RCE) vulnerability CVE-2020-14882 in Oracle WebLogic is actively exploited by operators behind the DarkIRC botnet. Experts reported that the DarkIRC botnet is actively targeting thousands of exposed Oracle WebLogic servers in the attempt of exploiting the CVE-2020-14882. c25e6559668942[.]xyz.

Malware 93

Malware DDOS Hacking Cybercrime 93

Security Affairs

JANUARY 6, 2021

Threat actors are attempting to hack Zyxel devices exploiting the recently disclosed vulnerability CVE-2020-29583, security researchers warn. The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583 , related to the presence of a hardcoded undocumented secret account.

Firmware 106

Firmware Passwords Accountability VPN 106

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. Data that emerged from the report are worrisome, in 2020 the reported losses exceeded $4.2 ” reads 2020 Internet Crime Report. billion in losses.

Internet 102

Internet Internet Scams Identity Theft 102

SecureList

FEBRUARY 16, 2021

In Q4 2020, Citrix ADC (application delivery controller) devices became one such tool, when perpetrators abused their DTLS interface. Overall, Q4 remained within the parameters of 2020 trends. Extortionists’ activity regularly made the news throughout 2020. This trend continued in the last months of 2020.

DDOS 132

DDOS Cryptocurrency Marketing Internet 132

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. Image: Mandiant.

Malware 289

Malware Software Technology Accountability 289

CyberSecurity Insiders

FEBRUARY 25, 2022

A malware that can take over social media accounts of victims is seen propelling on Microsoft App Store and reports are in that it has so far infected over 5,000 accounts in the disguise of fake Temple Run and Subway Surfer games.

Malware 121

Malware Ransomware Media Encryption 121

Krebs on Security

MAY 5, 2021

After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others. Image: Proofpoint.

Accountability 329

Accountability Passwords Advertising Phishing 329

SiteLock

AUGUST 27, 2021

Data breaches stole numerous headlines this year, including the notable Capital One breach that exposed more than 100 million customers’ accounts. According to SiteLock researchers and cybersecurity experts, the threat landscape will only continue to grow in 2020 and will likely bring even more new challenges with it.

Cybersecurity 98

Cybersecurity Phishing Data breaches IoT 98

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Brian Krebs | @briankrebs. Ingenious!

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

Security Affairs

APRIL 8, 2021

Wizcase experts discovered a security flaw in the open-source learning platform Moodle that could allow accounts takeover. At the beginning of October 2020, the Wizcase cyber research team, led by Ata Hakcil, discovered a security vulnerability in the open-source learning platform Moodle. Student account takeover.

Accountability 114

Accountability Passwords Education Risk 114

Daniel Miessler

MAY 19, 2020

TOPIC: In this episode, Daniel takes a look at the 2020 Verizon Data Breach Investigations Report. Hacking, social, and malware have fallen the most. Errors are now as common as social attacks, and more common than malware attacks. The top malware type is Password Dumper, because it really is about getting those creds.

Data breaches 130

Data breaches Phishing Malware Hacking 130

Google Security

APRIL 21, 2021

Additionally, in 2020, Google Play Protect scanned over 100B installed apps each day for malware across billions of devices. These guidelines help promote user transparency and developer accountability by providing users with relevant information about the app. We also banned 119k malicious and spammy developer accounts.

Data privacy 124

Data privacy Healthcare Education Accountability 124

Hot for Security

MARCH 23, 2021

Despite newly created opportunities for fraudsters to rip-off unsuspecting citizens during the ongoing pandemic, tech support scams inflicted nearly $150 million in reported losses in 2020.

Scams 111

Scams Internet Internet Banking 111

Security Affairs

MAY 13, 2020

The United States Cyber Command (USCYBERCOM) has uploaded five new North Korean malware samples to VirusTotal. The United States Cyber Command (USCYBERCOM) has shared five new malware samples attributed to the North Korea-linked Lazarus APT , it has uploaded the malicious code to VirusTotal. ” reads the DHS CISA’s advisory.

Malware 110

Malware Advertising Government Cryptocurrency 110