SecureList

FEBRUARY 26, 2021

The state of stalkerware in 2020 (PDF). Kaspersky’s data shows that the scale of the stalkerware issue has not improved much in 2020 compared to the last year: The number of people affected is still high. In total, 53,870 of our mobile users were affected globally by stalkerware in 2020. between 2015 and 2020.

Mobile 80

Mobile Surveillance Software Passwords 80

Security Affairs

DECEMBER 18, 2023

This data may include usernames, passwords, credit card numbers, social security numbers, and other sensitive information. They may use various tactics to evade antivirus and other security measures. Ransomware was discovered in late 2020, while info stealer was discovered in June 2021.

Banking 120

Banking Cybercrime Malware Accountability 120

SC Magazine

JUNE 18, 2021

The Blackbaud data breach was the largest health care-related incident of 2020, impacting an estimated two dozen providers and well over 10 million patients. In February 2020, threat actors hacked into its self-hosted environment, stealing data as they proliferated across the network. Photo captured from Alina Lodge website ).

Data breaches 80

Data breaches Ransomware Encryption Insurance 80

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. According to the company, most of the username and password combinations are available for free, and 5 billion of the above credentials are “unique.” Pierluigi Paganini.

Cybercrime 128

Cybercrime Antivirus Marketing Accountability 128

CyberSecurity Insiders

NOVEMBER 14, 2021

According to data, 2020 was a prolific year for cybercriminals who targeted these checks and benefits , hitting vulnerable people and families in their time of need. . 2: Use Strong Passwords. It may seem silly, but even in today’s day and age, the most commonly used password is “123456”. 3: Two-Factor Authentication (2FA).

Identity Theft 122

Identity Theft Passwords Password Management Social Engineering 122

Security Affairs

JANUARY 8, 2021

Upon executing the code, it will ask the user the path for the payload to be encrypted and the password to be used for AES encryption to hide the malware within the loader. In case, the password is not provided, the tool generates one. SecurityAffairs – hacking, Golang). Pierluigi Paganini.

Malware 142

Malware Encryption Antivirus Passwords 142

Security Affairs

OCTOBER 26, 2021

The gang has been active since at least 2020, threat actors hit organizations from various industries. Below are the recommended mitigations included in the alert: Implement regular backups of all data to be stored as air gapped, password protected copies offline. SecurityAffairs – hacking, Ranzy Locker ransomware).

Ransomware 135

Ransomware Firmware Antivirus Accountability 135

Security Affairs

SEPTEMBER 22, 2020

US Cybersecurity and Infrastructure Security Agency (CISA) is warning of a notable increase in the use of LokiBot malware by threat actors since July 2020. “CISA has observed a notable increase in the use of LokiBot malware by malicious cyber actors since July 2020. See Supplementing Passwords for more information.

Malware 69

Malware Passwords Advertising Antivirus 69

The Last Watchdog

SEPTEMBER 28, 2022

Related: The threat of ‘business logic’ hacks. A recent survey showed that one-third of all real estate transactions had a wire fraud attempt in 2020. To prevent malicious scams, companies should do the following: •Install high-quality antivirus software and spam filters. Phishing via texting.

Phishing 124

Phishing Scams Cybercrime Passwords 124

Security Affairs

OCTOBER 6, 2020

The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. SecurityAffairs – hacking, CISA). Pierluigi Paganini.

Government 135

Government Banking Advertising Malware 135

Identity IQ

AUGUST 20, 2021

According to BlueVoyant’s Cybersecurity in Higher Education 2021 report , ransomware attacks on colleges increased twofold between 2019 and 2020. Students can also make easy targets because they are often inexperienced with cyber-education and fall prey more easily to common hacking techniques. Improve Your Password Security.

Identity Theft 98

Identity Theft Passwords Education Banking 98

Security Boulevard

JUNE 14, 2021

From at least last Thursday, 10th of June 2021, multiple users report on Twitter that they got hacked after being approached to create new digital art. My Metamask got hacked and now my @withFND account is compromised. rar " is downloaded, which you need to unzip with the password "NFT", as we can observe from Cloudy Night's tweet.

Antivirus 142

Antivirus Accountability Malware Passwords 142

Security Affairs

MAY 22, 2021

The attacks were spotted in 2020, threat actors leveraged spear-phishing attacks, exploitation of vulnerabilities in web applications, hacking the infrastructure of contractors to penetrate the infrastructure of the Russian federal executive authorities. SecurityAffairs – hacking, Russian federal agencies). Pierluigi Paganini.

Computers and Electronics 122

Computers and Electronics Malware Antivirus Government 122

Security Affairs

JUNE 11, 2021

million Windows systems between 2018 and 2020. Most of the stolen files (50%+) were text files, some of them containing software logs, passwords, personal notes, and other sensitive information. SecurityAffairs – hacking, custom malware). Researchers from NordLocker have discovered an unsecured database containing 1.2-terabyte

Malware 117

Malware Computers and Electronics Software Financial Services 117

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Implement the shortest acceptable timeframe for password changes.

Passwords 71

Passwords Government Firmware Accountability 71

Security Affairs

APRIL 29, 2023

ViperSoftX is a JavaScript-based Remote Access Trojan (RAT) and cryptocurrency stealer that was first analyzed by Fortinet in February 2020. ViperSoftX also checks for active antivirus products running on the machine. .” reads the analysis published by Trend Micro. ” concludes the report.

Encryption 95

Encryption Malware Cryptocurrency Software 95

Adam Levin

NOVEMBER 17, 2020

And like everything else in 2020, these next few weeks promise to be a disaster. Make sure your smartphone, tablet and laptop are password-protected, particularly if you’re in the habit of carrying them around wherever you go. Leverage antivirus software. Create long and strong passwords. Change passwords repeatedly.

Scams 243

Scams Retail Banking Passwords 243

CyberSecurity Insiders

NOVEMBER 14, 2021

2020 was a high-water mark for online scams and fraud. million fraud complaints in 2020. They contain a wealth of information like credit card numbers, online passwords, photos, intellectual property, work documents and more. Run a complete antivirus/anti-malware scan and update software. Consumers lost $3.3

Scams 92

Scams Banking Accountability Passwords 92

Security Affairs

MARCH 17, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. Once compromised the target network, attackers attempt to exfiltrate the company’s accounts and passwords database. SecurityAffairs – hacking, FBI). Pierluigi Paganini.

Education 103

Education Ransomware Encryption Antivirus 103

Security Affairs

FEBRUARY 14, 2020

The FBI, the US Cyber Command, and the Department of Homeland Security have published technical details of a new North-Korea linked hacking operation. HappyValentines @CISAgov @DHS @US_CYBERCOM — USCYBERCOM Malware Alert (@CNMF_VirusAlert) February 14, 2020. Enforce a strong password policy and implement regular password changes.

Malware 123

Malware Passwords Advertising Antivirus 123

Security Affairs

AUGUST 4, 2020

NSCS @cse_cst @CISAgov @FBI [link] — @U.S.CyberCommand (@US_CYBERCOM) August 3, 2020. The CISA agency provides recommendations for system administrators and owners to enhance the level of security of their organizations: Maintain up-to-date antivirus signatures and engines. SecurityAffairs – hacking, Taidoor).

Malware 111

Malware Government Passwords System Administration 111

Hot for Security

JUNE 14, 2021

Furthermore, most consumer-oriented threats focus on stealing data (passwords, credit card information, etc). iPhones are not immune to hacks. As shown in our 2020 Consumer Threat Landscape Report , the surge in popularity of video conferencing solutions during the pandemic opened an unlikely door for opportunistic threat actors.

Mobile 132

Mobile Malware Spyware Media 132

Security Affairs

JANUARY 29, 2021

The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, and the Sony Pictures hack. In mid-2020, ZINC hackers created Twitter profiles for fake security researchers that were used to retweet security content and posting about vulnerability research. . Pierluigi Paganini.

Malware 122

Malware Antivirus Hacking Accountability 122

CyberSecurity Insiders

SEPTEMBER 14, 2021

Endpoint security – mobile device management (MDM) policies, antivirus (AV) solutions, URL filtering and blocking are all considered good cyber hygiene to block the most basic cyber threats. At the most basic level, it’s critical to change default passwords on routers at home and in the workplace.

Small Business 98

Small Business Cybersecurity Passwords Education 98

SecureWorld News

AUGUST 8, 2022

FormBook FormBook is an information stealer advertised in hacking forums. A 2020 LokiBot variant was disguised as a launcher for the Fortnite multiplayer video game. NanoCore NanoCore is used for stealing victims' information, including passwords and emails. AZORult's developers are constantly updating its capabilities.

Malware 88

Malware Banking Penetration Testing Healthcare 88

Security Boulevard

MARCH 31, 2021

How not to disclosure a Hack. UK fashion retailer FatFace angered customers in its handling of a customer data theft hack. review Active Directory password policy. In 2020 groups were demanding as much as $30 million to unlock a victim’s files and systems. conduct employee phishing tests. conduct penetration testing.

Energy and Utilities 122

Energy and Utilities Ransomware Banking Hacking 122

Security Affairs

DECEMBER 22, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. Once compromised the target network, attackers attempt to exfiltrate the company’s accounts and passwords database. SecurityAffairs – hacking, PYSA). Pierluigi Paganini.

Ransomware 106

Ransomware Penetration Testing Healthcare Government 106

Krebs on Security

SEPTEMBER 30, 2023

The government says Snatch used a customized ransomware variant notable for rebooting Microsoft Windows devices into Safe Mode — enabling the ransomware to circumvent detection by antivirus or endpoint protection — and then encrypting files when few services are running. ru using the email address tretyakov-files@yandex.ru.

Ransomware 215

Ransomware Accountability Cybercrime Backups 215

Webroot

OCTOBER 25, 2021

Even strong security can’t prevent an account from being hacked if account credentials are stolen in a phishing attack, one of the most common causes of identity theft. In 2020, phishing scams spiked by 510 percent between January and February alone. Check out Webroot® Security for Chromebook here.

Identity Theft 120

Identity Theft Spyware Phishing Antivirus 120

Security Affairs

MAY 2, 2021

Experts pointed out that ComplexCodes had been selling a “WeSupply Crypto Stealer” since May 2020., The researchers believe that the coder is an Italian vixer that previously created the “Zodiac Crypto Stealer” and “Spartan Crypter” for obfuscating malware to avoid antivirus detection. SecurityAffairs – hacking, WeSteal).

Cryptocurrency 108

Cryptocurrency Malware Advertising System Administration 108

Hacker Combat

JUNE 2, 2022

Malicious hackers claim to have hacked into the network system of the Foxconn Baja factory in Mexico on June 11. In December 2020, the DoppelPaymer extortion gang exposed documents allegedly stolen from some of its databases in the United States. using the LockBit 2.0 Final Remarks.

Ransomware 108

Ransomware Manufacturing Antivirus Cyber Risk 108

Malwarebytes

MARCH 17, 2021

But over the last few years, credible threats, exploits, and hacks of Apple products have become more persistent. However, from the start of 2020 onward, the malicious momentum has been building. ThiefQuest , a Mac malware masquerading as ransomware, was discovered in mid-2020. There was KeRanger ransomware in 2016.

Malware 105

Malware Adware Software Passwords 105

Security Affairs

JUNE 23, 2020

Fxmsp gained worldwide fame in May 2019, after it was reported that the networks belonging to leading antivirus software companies had been compromised. Soon enough, the threat actor started talking about hacking into IBM and Microsoft. Then, he carries out brute-force attacks on the victim’s server to guess the RDP password.

Antivirus 93

Antivirus Advertising Hacking Banking 93

ForAllSecure

APRIL 26, 2023

Criminal hacking has become a major threat to today’s organizations. Common Types of Cyber Attacks Common techniques that criminal hackers use to penetrate systems include social engineering, password attacks, malware, and exploitation of software vulnerabilities.

Social Engineering 40

Social Engineering Passwords Engineering Software 40

CyberSecurity Insiders

MAY 12, 2021

The problem occurred because the Microsoft workers modified the privacy settings of the Azure system failing to protect it with passwords or MFA. 2020 started for Marriott with an attack on their records by stealing the credentials of two of their staff members. Malefactors used 45 of the hacked accounts in Bitcoin-based scams. .

Accountability 144

Accountability Scams Risk Software 144

eSecurity Planet

OCTOBER 4, 2021

If the pace continues, fileless malware detections will double in volume between 2020 and this year. The report covered a range of cybersecurity issues, including network attacks – which rose by 22 percent over the previous quarter, to almost 5.1

Encryption 145

Encryption Malware Ransomware Firewall 145

Security Affairs

JUNE 2, 2021

There was no need for a password or login credentials to access the information, and the data was not encrypted. In a sampling of the player profile data, the WizCase security team found that users could spend as much as $907 on the game via in-app microtransactions in the 10,000-player sample from 2019-2020 our team observed.

Data breaches 110

Data breaches Accountability Mobile Phishing 110