Malwarebytes

OCTOBER 27, 2023

In a security blog about Octo Tempest Microsoft states: “Octo Tempest monetized their intrusions in 2022 by selling SIM swaps to other criminals and performing account takeovers of high-net-worth individuals to steal their cryptocurrency.” Prevent intrusions. Detect intrusions. Don’t get attacked twice.

Social Engineering 95

Social Engineering Engineering Ransomware Backups 95

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 90

Ransomware Telecommunications Manufacturing Malware 90

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware.

Phishing 86

Phishing Education Accountability Telecommunications 86

Security Affairs

DECEMBER 7, 2023

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Government 108

Government Telecommunications Accountability Phishing 108

Security Affairs

DECEMBER 6, 2021

The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST backdoor , TEARDROP malware , GoldMax malware , Sibot , and GoldFinder backdoors. ” reads the report published by ANSSI.

Phishing 92

Phishing Telecommunications Government Accountability 92

Security Boulevard

MARCH 15, 2022

It was the Expresso Twitter account that the hackers used to bait the organization to demonstrate their control over the company's IT infrastructure. Other targets include Brazil’s Ministry of Health (MoH) and Brazilian telecommunications operator Claro. Impresa owns the country's largest TV channel and newspaper, SIC and Expresso.

Ransomware 128

Ransomware Telecommunications Firmware Media 128

SecureWorld News

JANUARY 27, 2023

According to the DOJ , the HIVE ransomware network had been operating for several years, using the "ransomware-as-a-service" model to target a wide range of businesses and critical infrastructure sectors, including government facilities, telecommunication companies, manufacturing, information technology, and healthcare and public health.

Ransomware 85

Ransomware Cybercrime Cryptocurrency Telecommunications 85

Security Boulevard

JUNE 26, 2023

Data breaches caused by weak security measures and procedures result in severe monetary losses, erosion of clients’ trust, and irreversible reputation damage to organizations in the healthcare, financial services, technology, and retail industries, as well as government and public sector entities.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5 Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5

Cyber Attacks 83

Cyber Attacks Firewall Data breaches Telecommunications 83

Security Affairs

JUNE 14, 2021

We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions,” reads the statement.

Ransomware 102

Ransomware Cybercrime Telecommunications Accountability 102

SecureList

OCTOBER 18, 2021

Our investigation into Lyceum has shown that the group has evolved its arsenal over the years and shifted its usage from the previously documented.NET malware to new versions, written in C++. In 2021, we have been able to identify a new cluster of the group’s activity, focused on two entities in Tunisia.

DNS 92

DNS Telecommunications Malware Accountability 92

Security Affairs

AUGUST 27, 2019

reported that Hexane is targeting organizations in the oil and gas industry and telecommunication providers. Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. The malware uses DNS and HTTP-based communication mechanisms. Security experts at Dragos Inc.

DNS 81

DNS Passwords Penetration Testing Social Engineering 81

Security Affairs

MAY 28, 2021

The NOBELIUM APT is the threat actor that conducted supply chain attack against SolarWinds which involved multiple families of implants, including the SUNBURST backdoor , TEARDROP malware , GoldMax malware , Sibot , and GoldFinder backdoors. “On May 25, the NOBELIUM campaign escalated significantly.

Phishing 91

Phishing Threat Detection Telecommunications Malware 91

IT Security Guru

DECEMBER 1, 2022

Speaking of training and taking into account humans’ perceptions, cybersecurity awareness training is by far the best place to start. These training programs imitate cyberattacks and educate people about existing malware. Ultimately, our cyber secure future is a matter of personal accountability and proper human risk management.

Cyber threats 111

Cyber threats Cybersecurity Education Risk 111

Security Affairs

JULY 6, 2021

According to Group-IB’s Threat Intelligence team, the suspect, dubbed Dr HeX by Group-IB based on one of the nicknames that he used, has been active since at least 2009 and is responsible for a number of cybercrimes, including phishing, defacing, malware development, fraud, and carding that resulted in thousands of unsuspecting victims.

Cybercrime 94

Cybercrime Phishing Banking Telecommunications 94

CyberSecurity Insiders

JUNE 22, 2021

Yet, there are some key concerns that telecommunication providers need to be aware of if they are going to successfully implement this next generation of connectivity, as well as inspire trust in customers. Estimations from the GSMA predict that by 2025, 5G will account for 21% of total mobile connections , with around 1.8

IoT 101

IoT Mobile Risk Telecommunications 101

Security Affairs

JULY 1, 2020

Federal Communications Commission (FCC) announced that Chinese telecommunications giants Huawei and ZTE are considered as national security threats. The Bureau also took into account the findings and actions of Congress, the Executive Branch, the intelligence community, our allies, and communications service providers in other countries.

Government 84

Government Telecommunications Internet Internet 84

Krebs on Security

MAY 2, 2023

The leaked records indicate the network’s chief technology officer in Pakistan has been hacked for the past year, and that the entire operation was created by the principals of a Tennessee-based telemarketing firm that has promoted USPS employment websites since 2016. .”

Marketing 266

Marketing Advertising Scams Telecommunications 266

Security Boulevard

MARCH 24, 2022

On March 15th, research firm ESET reported a new data-wiping malware targeting Ukraine named CaddyWiper. [ 1 ] The malware “destroys user data and partitions information from attached drives”. On March 15th, the FBI and CISA released a report about Russian state sponsored actors targeting an unnamed NGO. [ Viasat Inc.,

Ransomware 59

Ransomware Malware Government Antivirus 59

SecureList

MARCH 30, 2021

Most of the discovered malware families are fileless malware and they have not been seen before. One particular piece of malware from this campaign is called Ecipekac (a.k.a One of Ecipekac’s payloads is a new fileless malware which we call P8RAT (a.k.a DelfsCake), is also a new fileless malware. GreetCake).

Malware 141

Malware Encryption VPN Technology 141

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

The directive relied heavily on the discretion of individual member states, and lacked the accountability required. Malware and ransomware have become the leading sources of increased security attacks , because of their effectiveness in delivering big pay-outs with relatively low cost. What does that mean?

Encryption 71

Encryption Risk Cybersecurity Marketing 71

Security Affairs

AUGUST 7, 2019

The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. Indeed during the group_a, the main observed delivery techniques where about Phishing (rif.T1193) and Valid Accounts (rif.T1078).

Computers and Electronics 80

Computers and Electronics Penetration Testing DNS Phishing 80

eSecurity Planet

FEBRUARY 3, 2021

This update touches on the newly detected malware , attack vectors to guard against, and why the targeting of security vendors is a critical development in cybersecurity. Before jumping into the technical details regarding each new malware detected and proper safeguards, here is a brief look at the events to date: Sep 2019.

Software 62

Software Malware Authentication Penetration Testing 62

Security Affairs

DECEMBER 6, 2021

Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers.

Malware 105

Malware VPN Telecommunications Accountability 105

The Last Watchdog

AUGUST 20, 2019

And, increasingly, they come riddled with some of the most invasive types of malware. This is putting consumers and companies in harm’s way through yet another attack vector – one which gives professional hacking collectives another means to compromise online accounts and break into company networks.

Malware 185

Malware Mobile Manufacturing Marketing 185

Krebs on Security

DECEMBER 29, 2022

This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware. ” Meanwhile, Crypto.com is trying to put space between it and recent headlines that a breach led to $30 million being stolen from hundreds of customer accounts.

Cryptocurrency 233

Cryptocurrency Cybercrime Computers and Electronics Scams 233

eSecurity Planet

SEPTEMBER 1, 2021

5G technology will improve some IoT use cases, thereby adding to the proliferation of IoT devices – a phenomena individuals and organizations aren’t prepared to fully defend in the immediate future. Also read: Mobile Malware: Threats and Solutions. Exposing the Internet of Things (IoT) Universe. Network Slice Compromise.

Risk 126

Risk Cybersecurity IoT Wireless 126

Spinone

DECEMBER 26, 2018

The contemporary world has witnessed the rise of the Internet and global communication, and collaboration technologies, including mobile data use and the culture of bring your own device [BYOD]. VoIP phishing and impersonation also victimized millions of corporate employees across the world , contributing to an even greater cyber threat.

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

SecureList

SEPTEMBER 30, 2021

This cluster stood out for its usage of a formerly unknown Windows kernel mode rootkit that we dubbed Demodex, and a sophisticated multi-stage malware framework aimed at providing remote control over the attacked servers. We identified multiple attack vectors that triggered an infection chain leading to the execution of malware in memory.

Malware 126

Malware Engineering Encryption Telecommunications 126

SecureList

DECEMBER 14, 2022

For instance, according to the New York Times, in 2003, the United States made plans for a huge cyberattack to freeze billions of dollars in Saddam Hussein’s bank accounts and cripple his government before the invasion of Iraq. However, the plan was not approved because the government feared collateral damage. Key insights.

DDOS 131

DDOS Ransomware Government Energy and Utilities 131

SecureList

MAY 11, 2023

Security researchers discovered an archive that contained test builds of the malware for a number of less common platforms, including macOS and FreeBSD, as well as for various non-standard processor architectures, such as MIPS and SPARC. Meanwhile, the malware itself evolved, adding an LDAP-based self-spreading mechanism.

Ransomware 115

Ransomware Malware Architecture Telecommunications 115

Security Affairs

FEBRUARY 13, 2021

The product we built is based entirely on Open Source technology, and one of our security modules utilises a technology called Falco. We will now look at how a proactive cybersecurity technology such as ACSIA would capture and respond to each of these three separate attack vectors and eliminate the threat they represent in real-time.

Cybersecurity 94

Cybersecurity Accountability Marketing Software 94

SC Magazine

JUNE 16, 2021

No vulnerable code is hacked, and no employee is phished or infected with malware – yet these bots can create a lot of angry, dissatisfied customers and hurt a company’s bottom line. Major health care groups telecommunications companies and law enforcement organizations have also anonymously reviewed the framework, Grace-McMinn noted.

Accountability 87

Accountability Telecommunications Retail Cyber threats 87

Security Affairs

NOVEMBER 29, 2019

The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work. The telecommunications sector: Are providers ready for 5G? If they manage to compromise a telecommunications company, they can then also compromise its customers for surveillance or sabotage purposes.

Banking 86

Banking Telecommunications Marketing Internet 86

eSecurity Planet

FEBRUARY 9, 2022

According to Jay McBain, an analyst at Forrester Research, spending on IT and telecommunications will be worth about $7 trillion by 2030. 54% of ESG respondents stated that the primary drivers behind technology spending were strengthening of cybersecurity and improving resiliency against attacks. Competition is fierce.

Backups 128

Backups Firewall DDOS Antivirus 128

CyberSecurity Insiders

MARCH 5, 2021

On December 13 2020, multiple vendors such as FireEye and Microsoft reported emerging threats from a nation-state threat actor who compromised SolarWinds, and trojanized SolarWinds Orion business software updates in order to distribute backdoor malware called SUNBURST. It also appeared in the recent CISA Emergency Directive 20-01.

DNS 138

DNS Education Malware Telecommunications 138

eSecurity Planet

JANUARY 28, 2021

This list was developed based on multiple factors, among them growth rates, recent funding rounds and innovations in new and emerging technologies. The two-tier program includes business development opportunities, training, joint marketing, partner collateral, marketing co-op funds, sales leads and field account planning. Cybereason.

Cybersecurity 87

Cybersecurity Artificial Intelligence Threat Detection Marketing 87