Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cyber Attacks 83

Cyber Attacks Firewall Data breaches Telecommunications 83

SecureWorld News

NOVEMBER 23, 2021

The steps we’re taking today will send a clear message: In a free society, it is unacceptable to weaponize powerful state-sponsored spyware against those who seek to make the world a better place.". Being on this list effectively blocks the government or its vendors from doing business with NSO. And he didn't stop there.

Spyware 73

Spyware Surveillance Engineering Software 73

Security Affairs

MAY 29, 2022

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks The strange link between Industrial Spy and the Cuba ransomware operation Reuters: Russia-linked APT behind Brexit leak website GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack Android pre-installed apps are affected by high-severity (..)

InfoSec 100

InfoSec Spyware DDOS Firewall 100

Security Affairs

FEBRUARY 28, 2021

Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing Google Alerts to deliver unwanted programs FBI warns of the consequences of telephony denial-of-service (TDoS) attacks An attacker was able to siphon audio feeds from multiple Clubhouse rooms Georgetown County has yet to recover from a sophisticated (..)

Spyware 80

Spyware Backups Manufacturing Data breaches 80

Security Affairs

MARCH 4, 2023

stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0 FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Spyware 82

Spyware Data breaches Retail Ransomware 82

Security Affairs

APRIL 21, 2019

Attackers hacked support agent to access Microsoft Outlook email accounts. Gnosticplayers round 5 – 65 Million+ fresh accounts from 6 security breaches available for sale. Gnosticplayers round 5 – 65 Million+ fresh accounts from 8 security breaches available for sale. Million email accounts without permission. Paper Copy.

Computers and Electronics 62

Computers and Electronics Spyware Data breaches Advertising 62

Security Affairs

FEBRUARY 13, 2022

Organizations are addressing zero-day vulnerabilities more quickly, says Google CISA, FBI, NSA warn of the increased globalized threat of ransomware Croatian phone carrier A1 Hrvatska discloses data breach FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities (..)

Spyware 72

Spyware Surveillance Ransomware Hacking 72

Security Affairs

JULY 11, 2022

Axie Infinity disclosed the security breach through the official Discord and Twitter accounts, and by Ronin Network. A PDF containing the offer was sent to the employee, once opened the file a spyware compromised his system and infiltrate the Ronin’s network. The attackers have stolen roughly 173,600 ether and 25.5 million USDC.

Engineering 79

Engineering Spyware Phishing Hacking 79

Security Affairs

APRIL 8, 2019

CEO of NGN International, Yaqoob AlAwadhi stated that, from 2017 to 2018, cybercrimes aimed at financial thefts increased significantly with cyber-criminals largely exploiting software vulnerabilities through phishing mailings and hacked legal resources. Map of Middle-Eastern Countries.

Artificial Intelligence 64

Artificial Intelligence Government Banking Advertising 64

SecureWorld News

FEBRUARY 7, 2024

State Department announced Monday a new policy to impose visa restrictions on individuals linked to the misuse of commercial spyware tools that enable unlawful surveillance and human rights abuses globally. The policy allows visa denials on a case-by-case basis for those involved in spyware misuse. RELATED: U.S.

Spyware 85

Spyware Surveillance Government Accountability 85

SecureList

NOVEMBER 17, 2021

Last year, we foresaw the APT and cybercrime worlds becoming more porous on an operational level. In 2020, we predicted that governments would adopt a “name and shame” strategy to draw attention to the activities of hostile APT groups, a trend that has evolved even more in the last year.

Mobile 128

Mobile Surveillance Ransomware Government 128

Security Affairs

MARCH 19, 2019

Group-IB specialists discovered 19 928 of Singaporean banks’ cards that have shown up for sale in the dark web in 2018 and found hundreds of compromised government portals’ credentials stolen by hackers throughout past 2 years. Users’ logins and passwords from the Government Technology Agency ( [link] [.] Have you been pwned?

Banking 79

Banking Government Passwords Marketing 79

SecureList

AUGUST 30, 2023

Tomiris called, they want their Turla malware back We first reported Tomiris in September 2021, following our investigation into a DNS hijack against a government organization in the CIS (Commonwealth of Independent States). Using a number of vulnerabilities in iOS, the attachment is executed and installs spyware.

Malware 73

Malware Spyware Cryptocurrency Government 73

SecureList

NOVEMBER 1, 2022

In most cases, the targets appear to be diplomatic and government organizations in Europe. In June, we identified a previously unknown Android spyware app that targets Persian-speaking individuals. The spyware itself collects various data from the victims’ devices, such as call logs or lists of contacts.

Malware 139

Malware Ransomware Spyware Encryption 139

Security Affairs

DECEMBER 11, 2018

Group-IB, an international company that specializes in preventing cyberattacks , has detected more than 40 000 compromised user credentials of online government services in 30 countries around the world. Group-IB Threat Intelligence has detected government websites’ user accounts compromised by cyber criminals in 30 countries.

Government 91

Government Cybercrime Accountability Advertising 91

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Such attacks are likely to comprise an even larger portion of the threat landscape next year.

Spyware 102

Spyware Phishing Cybercrime Energy and Utilities 102

Security Affairs

FEBRUARY 11, 2024

Gov imposes visa restrictions on individuals misusing Commercial Spyware HPE is investigating claims of a new security breach Experts warn of a surge of attacks targeting Ivanti SSRF flaw How to hack the Airbus NAVBLUE Flysmart+ Manager Crooks stole $25.5

Spyware 92

Spyware Surveillance Identity Theft DDOS 92

Heimadal Security

APRIL 8, 2022

Hamas-linked cybercrime organization dubbed ‘APT-C-23’ was noticed catfishing Israeli officials working in defense, law, enforcement, and government institutions, resulting in the deployment of new malware. Experts at security […].

Hacking 78

Hacking Social Engineering Spyware Cybercrime 78

Security Affairs

APRIL 2, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) The post Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 84

Spyware Surveillance Artificial Intelligence Data breaches 84

SecureList

MAY 27, 2022

The attackers are mainly interested in collecting data on user accounts, IP addresses and session information; and they steal configuration files from programs that work directly with cryptocurrency and may contain account credentials. Subsequently, DDoS attacks hit some government websites. Other malware.

Phishing 103

Phishing Spyware Firmware Malware 103

Security Affairs

APRIL 9, 2020

Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Spyware: the most likely COVID-19 payload. Most COVID-19-related phishing emails analyzed had different spyware strains embedded as attachments. Source: CERT-GIB.

Phishing 106

Phishing Malware Spyware DDOS 106

SecureList

JULY 27, 2023

Following this, we released the first of a series of additional reports describing the final payload in the infection chain: a highly sophisticated spyware implant that we dubbed “TriangleDB” Operating in memory, this implant periodically communicates with the C2 (command and control) infrastructure to receive commands.

Malware 84

Malware Government Phishing Social Engineering 84

Security Affairs

APRIL 28, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 96

Cybercrime Spyware Data breaches Antivirus 96

SecureList

OCTOBER 26, 2021

In June, more than six months after DarkHalo had gone dark, we observed the DNS hijacking of multiple government zones of a CIS member state that allowed the attacker to redirect traffic from government mail servers to computers under their control – probably achieved by obtaining credentials to the control panel of the victims’ registrar.

Malware 140

Malware Government Surveillance Spyware 140

SecureWorld News

FEBRUARY 7, 2023

The cybercrime campaigns below demonstrate how crooks can get a leg up in this cat-and-mouse game. Adult links cloaked as government sites In a campaign that hit the headlines in January 2023, threat actors capitalized on a web application security flaw called Open Redirect to drive traffic to X-rated resources. relatedlink.html?

Cybercrime 88

Cybercrime Phishing Accountability Government 88

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

SecureList

NOVEMBER 14, 2023

The rise of destructive attacks In December of last year, shortly after we released our predictions for 2023, Russian government agencies were reported to have been targeted by a data wiper called CryWiper. This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware.

Hacking 102

Hacking Energy and Utilities Media Malware 102