Security Affairs

JUNE 17, 2021

UNC2465 cybercrime group that is affiliated with the Darkside ransomware gang has infected with malware the website of a CCTV camera vendor. Experts noticed that in this supply chain attack, UNC2465 did not deliver the Darkside ransomware as the final payload, but they not exclude that the cybercrime group could move to a new RaaS operation.

Cybercrime 106

Cybercrime Ransomware Antivirus Software 106

Security Affairs

APRIL 24, 2023

The company received two vulnerability reports from the cybersecurity firm Trend Micro ) for high/critical severity security issues in PaperCut MF/NG. Trend Micro announced they will disclose further information (TBD) about the vulnerability on 10th May 2023. ” reads the advisory published by PaperCut. Last week, the U.S.

Cybercrime 74

Cybercrime Software Education Ransomware 74

Security Affairs

MAY 13, 2024

” To defend against ransomware campaign like this one, NJCCIC provided the following recommendations: Security Awareness Training : Engage in security awareness training to enhance defense mechanisms and recognize potential signs of malicious communications. Reference the provided resources for establishing DMARC authentication.

Phishing 109

Phishing Ransomware Security Awareness Authentication 109

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity 214

Cybersecurity Cybercrime Education Passwords 214

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. No information is available to indicate whether it is a 3rd party compromise, or which 'division' this data is from. Regardless, upon review we can confirm the stolen data is legitimate.

Data breaches 134

Data breaches Telecommunications Cybercrime Hacking 134

Security Affairs

APRIL 18, 2024

LabRat was designed to capture two-factor authentication codes and credentials, allowing the criminals to bypass enhanced security measures.” A Melbourne man and an Adelaide man, who police will allege were LabHost users, were arrested during the warrants and charged with cybercrime-related offences. ” The U.K.

Phishing 99

Phishing Cybercrime Passwords Banking 99

Security Affairs

JANUARY 14, 2024

The investigation started in January 2023 when a cloud provider approached Europol and shared information regarding compromised cloud user accounts. The compromised account holders face huge cloud bills due to the abuse of their clod resources. ” continues the press release. .” ” continues the press release.

Cryptocurrency 104

Cryptocurrency Cybercrime Accountability Authentication 104

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches 106

Data breaches Computers and Electronics Cybercrime Ransomware 106

Security Affairs

MAY 13, 2024

Unfortunately, our investigation has identified that an unauthorised third party has accessed some customer information.” “It is important to note that our systems are secure. .” “It is important to note that our systems are secure. ” continues the notice. ” continues the notice.

Data breaches 95

Data breaches Cyber Attacks Identity Theft Banking 95

Security Affairs

MAY 12, 2024

Recommendations provided in the report include installing updates promptly, using phishing-resistant multi-factor authentication (MFA), securing remote access software, making backups, and applying mitigations from the #StopRansomware Guide.

Ransomware 114

Ransomware Hacking Healthcare Retail 114

Security Affairs

MARCH 14, 2023

Microsoft warns of large-scale phishing attacks orchestrated with an open-source adversary-in-the-middle (AiTM) phishing kit available in the cybercrime ecosystem Adversary-in-the-middle (AiTM) phishing kits are becoming an essential technology in the cybercrime ecosystem that is used by multiple threat actors to launch phishing attacks.

Phishing 76

Phishing Cybercrime Authentication Mobile 76

Security Affairs

DECEMBER 21, 2023

The database included the personally identifiable information of Blink Mobility customers and administrators, including: Phone number Email address Encrypted password Registration date Device info and device token Details on subscription and rented vehicles (license plate, VIN, booking start and end location, etc.)

Mobile 105

Mobile Identity Theft Passwords Phishing 105

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 108

VPN Cybercrime Ransomware Hacking 108

Security Affairs

FEBRUARY 16, 2021

. “Multiple threat actors have abused the ngrok platform to gain unauthorized access to the target for delivering the additional payload, exfiltrating financial data such as credit/debit card information, and carrying out targeted phishing attacks.” ” reads the post published by Cyble. ” continues Cybler.

Phishing 128

Phishing Cybercrime Mobile Internet 128

Security Affairs

JUNE 2, 2021

Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. The database supposedly contains information about DDoS-Guard’s customers, including their names, IP-addresses, and payment information. The seller registered this account on exploit[.]in

DDOS 106

DDOS Cybercrime Authentication Accountability 106

Security Affairs

APRIL 27, 2024

The attack chain starts with fake application updates for popular software, such as the Chrome browser and the Austrian digital authentication application. Brokewell malware supports “accessibility logging,” it records any device events such as touches, swipes, displayed information, text input, and opened applications.

Malware 110

Malware Spyware Authentication Mobile 110

Security Affairs

JULY 2, 2023

Illicit Telegram Communities Dismantling of an encrypted network sends shockwaves through organised crime groups across Europe TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant Malware Trojanized Super Mario Game Installer Spreads SupremeBot Malware Initial research exposing JOKERSPY Who is 8BASE?

Cybercrime 85

Cybercrime Hacking Ransomware Malware 85

Security Affairs

APRIL 30, 2023

ViperSoftX uses more sophisticated encryption and anti-analysis techniques Atomic macOS Stealer is advertised on Telegram for $1,000 per month CISA warns of a critical flaw affecting Illumina medical devices OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands Cisco discloses a bug in the Prime Collaboration Deployment (..)

Cybercrime 88

Cybercrime Malware Hacking Accountability 88

Security Affairs

MARCH 10, 2024

Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp Cybercrime BlackCat Ransomware Affiliate TTPs American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack LockBit 3.0’S

Spyware 88

Spyware Data breaches Hacking Ransomware 88

Security Affairs

FEBRUARY 10, 2022

“The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Authenticate calls from third party authorized retailers requesting.

Mobile 91

Mobile Cryptocurrency Authentication Accountability 91

Security Affairs

FEBRUARY 25, 2024

Uninstall it immediately Microsoft Exchange flaw CVE-2024-21410 could impact up to 97,000 servers ConnectWise fixed critical flaws in ScreenConnect remote access tool More details about Operation Cronos that disrupted Lockbit operation Cactus ransomware gang claims the theft of 1.5TB of data from Energy management and industrial automation firm Schneider (..)

Spyware 96

Spyware Cyber Insurance Hacking Advertising 96

Security Affairs

FEBRUARY 23, 2024

Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. The security breach occurred on Sunday 18 February 2024, but Tangerine management became aware of the incident on Tuesday 20 February 2024. ” reads the statement published by the company.

Data breaches 95

Data breaches Telecommunications Banking Mobile 95

Security Affairs

FEBRUARY 10, 2021

Europol investigators revealed that the cybercrime organization stole more than $100 million worth of cryptocurrency using SIM Swapping attacks. “This enabled them to steal money, bitcoin and personal information, including contacts synced with online accounts. . SecurityAffairs – hacking, cybercrime).

Cybercrime 82

Cybercrime Cryptocurrency Accountability Authentication 82

Security Affairs

JANUARY 3, 2024

Upon detection, it alters the banking information of the intended recipient (like the victim’s supplier) to details specified by the perpetrator. The “GXC Team” has also created several kits designed to pilfer identity information from Australian and Spanish citizens through the use of fake government websites.

Artificial Intelligence 119

Artificial Intelligence Banking Scams Cybercrime 119

Security Affairs

NOVEMBER 29, 2022

In early October, Fortinet addressed the critical authentication bypass flaw, tracked as CVE-2022-40684, that impacted FortiGate firewalls and FortiProxy web proxies. On October 18, Fortinet confirmed the critical authentication bypass vulnerability is being exploited in the wild. ” concludes the post.

VPN 100

VPN Firewall Authentication Internet 100

Security Affairs

NOVEMBER 29, 2023

In October, the Cloud identity and access management solutions provider said that threat actors broke into its support case management system and stole authentication data, including cookies and session tokens, that can be abused in future attacks to impersonate valid users. Many users of the customer support system are Okta administrators.

Social Engineering 107

Social Engineering Authentication Engineering Accountability 107

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 107

Social Engineering Spyware Data breaches Surveillance 107

Security Affairs

APRIL 5, 2023

This platform is specifically designed to facilitate financial crime, providing cybercriminals with a range of services, including stolen financial data, credit card information, forged documents, money laundering services, victim reconnaissance ‘lookups’, and more. Consumers must be cautious about sharing their sensitive information online.

Banking 78

Banking Cybercrime Accountability Risk 78

Security Affairs

MAY 9, 2024

In early January, the software firm reported that threat actors are exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x,

Authentication 96

Authentication Backups Cyber threats Malware 96

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 86

Spyware Hacking Malware Social Engineering 86

Security Affairs

APRIL 10, 2024

The researchers confirmed that the leaked data is legitimate , however, it is still unclear if the information was stolen from a third-party organization linked to AT&T. We determined in 2021 that the information offered on this online forum did not appear to have come from our systems. It was leaked online today.”

Data breaches 101

Data breaches Telecommunications Identity Theft Hacking 101

Security Affairs

AUGUST 15, 2022

Researchers from Cyber looked for VNC exposed over the internet and discovered over 8000 VNC instances with authentication disabled, most of them in China, Sweden, and the United States. Cyble also reported that threat actors are selling access to systems exposed on the Internet via VNC on cybercrime forums. ” Cyble states.

Internet 95

Internet Internet Risk Cybercrime 95

Security Affairs

NOVEMBER 20, 2023

The Canadian government declared that two of its contractors,Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & Moving Services, have been hacked, resulting in the exposure of sensitive information belonging to an undisclosed number of government employees.

Data breaches 113

Data breaches Government Hacking Backups 113

Security Affairs

MARCH 26, 2024

In May 2018, researchers from security firm Qihoo 360 Netlab reported that cybercriminals that targeted the Dasan GPON routers were using another new zero-day flaw affecting the same routers and recruit them in their botnet. Once the rules have been created, a thread connects to an NTP server from a roster of authentic NTP servers.

IoT 124

IoT Cybercrime Internet Internet 124

CyberSecurity Insiders

MAY 22, 2021

NEW YORK–( BUSINESS WIRE )– Veridium , a leading developer of frictionless, passwordless authentication solutions, is proud to announce that it’s won the 2021 Global InfoSec Award in the category of Next-Gen in Passwordless Authentication. “We More information can be found here: www.cyberdefenseawards.com/.

InfoSec 52

InfoSec B2C B2B Authentication 52

Security Affairs

JANUARY 28, 2024

Russia-linked APT group Midnight Blizzard hacked Hewlett Packard Enterprise (HPE) CISA adds Atlassian Confluence Data Center bug to its Known Exploited Vulnerabilities catalog 5379 GitLab servers vulnerable to zero-click account takeover attacks Experts released PoC exploit for Fortra GoAnywhere MFT flaw CVE-2024-0204 Akira ransomware attack on Tietoevry (..)

Artificial Intelligence 96

Artificial Intelligence Hacking Malware Cyber Attacks 96

Security Affairs

OCTOBER 17, 2023

According to Statista.com, the impact of cybercrime is expected to reach almost $13 trillion this year. Caesars claimed that it had “identified suspicious activity in its information technology network resulting from a social engineering attack on an outsourced IT support vendor used by the Company.”

Social Engineering 113

Social Engineering Ransomware Engineering Phishing 113