Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. That link would attempt to install spyware called Flubot, malware designed to steal online banking data from Andriod devices. . Cyber Security Roundup for April 2021.

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 94

Artificial Intelligence VPN Hacking Firewall 94

SecureList

APRIL 27, 2021

This is our latest installment, focusing on activities that we observed during Q1 2021. In parallel, Volexity also reported the same Exchange zero-days being in use in early 2021. During routine monitoring of detections for FinFisher spyware tools, we discovered traces that point to recent FinFly Web deployments.

Malware 142

Malware Spyware Government Social Engineering 142

Security Affairs

DECEMBER 3, 2022

Google fixed the ninth actively exploited Chrome zeroday this year A new Linux flaw can be chained with other two bugs to gain full root privileges Attack of drones: airborne cybersecurity nightmare Cuba Ransomware received over $60M in Ransom payments as of August 2022 Android Keyboard Apps with 2 Million downloads can remotely hack your device New (..)

Spyware 92

Spyware Data breaches VPN Hacking 92

CyberSecurity Insiders

MAY 19, 2023

By Aaron Sandeen, CEO and co-founder at Securin Since June 2021, Hive Ransomware has been dominating the ransomware scene. Since June 2021, Hive has targeted an average of three companies per day. Bad actors like Hive may also use CVE-2021-33558, the newly discovered Boa vulnerability, to access a victim’s network.

Ransomware 124

Ransomware Encryption Healthcare Education 124

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 53

Spyware Data breaches Ransomware Retail 53

Security Affairs

DECEMBER 5, 2021

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook.

Spyware 83

Spyware Ransomware Hacking VPN 83

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Update firewalls and SSL VPN gateways in good time. Don’t forget about cyberhooligans and hacktivists.

Spyware 110

Spyware Phishing Cybercrime Energy and Utilities 110

eSecurity Planet

SEPTEMBER 29, 2021

Recent research by Positive Technologies looked at the cyber threat landscape during Q2 2021 and found that ransomware attacks reached “stratospheric” levels, accounting for 69% of all malware attacks, a huge jump from 39% in Q2 2020. Integrated one-on-one Spyware HelpDesk support. Kaspersky’s Key Features.

Ransomware 107

Ransomware VPN Backups Malware 107

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform.

VPN 77

VPN Ransomware Spyware DDOS 77

eSecurity Planet

MARCH 27, 2023

That’s fewer than the 81 zero-days exploited in 2021, but far more than those exploited in any previous year. “A number of factors may have contributed to the zero-day count in 2020 dipping, then quadrupling in 2021,” researchers James Sadowski and Casey Charrier wrote.

Firewall 103

Firewall Internet Internet Telecommunications 103

SecureList

NOVEMBER 1, 2022

We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. At the beginning of 2021, Kaspersky published a private report about the A41APT campaign. Russian-speaking activity.

Malware 142

Malware Ransomware Spyware Encryption 142

SecureList

NOVEMBER 17, 2021

Let’s start by looking at the predictions we made for 2021. The Israeli Defense Forces (IDF) have claimed that threat actors have been using catfishing to lure Israeli soldiers into installing spyware. We nevertheless observed some threat actors, such as APT10, who were exploiting these vulnerabilities to hijack VPN sessions.

Mobile 135

Mobile Surveillance Ransomware Government 135

Security Affairs

MAY 25, 2021

The threat actors leverage VPN services (primarily ProtonVPN) to fly under the radar when accessing public facing applications of the targets. . “Agrius actors also dropped a novel wiper named ‘Apostle’ and a custom.NET backdoor called ‘IPsec Helper’.” ” concludes the report.

Ransomware 103

Ransomware Malware VPN Hacking 103

eSecurity Planet

FEBRUARY 9, 2022

Another 29% say cybersecurity spending will be approximately the same as in 2021. The rest – 2% – intend to pay less for cybersecurity in 2022 compared to 2021. This service also allows remote users to connect to the network safely through VPN. It unites spyware, malware, and virus protection with a policy and reporting engine.

Backups 140

Backups Firewall DDOS Antivirus 140

SecureList

NOVEMBER 14, 2022

In another publication , Google also followed up on the activities of a similar vendor named Cytrox that had leveraged four 0-day vulnerabilities in a 2021 campaign. In 2022, the GReAT team tracked several threat actors leveraging SilentBreak’s toolset as well as a commercial Android spyware we named MagicKarakurt.

Firmware 111

Firmware Surveillance Mobile Telecommunications 111

Security Affairs

MARCH 27, 2023

Crack.exe, likely a “PseudoManuscrypt” loader, a particular kind of threat known since June 2021 that Kaspersky attributes to the Chinese threat landscape, but, at the moment, the speculation of the Lazarus (APT38) authorship of this piece of code does not benefit enough confidence ( link , link ).

Malware 82

Malware Social Engineering Encryption Marketing 82