Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The operators behind the infamous TrickBot (ITG23 and Wizard Spider) malware have resurfaced with new distribution channels to deliver malicious payloads, such as Conti ransomware. ” concludes the report.

Malware 106

Malware Cybercrime DDOS Social Engineering 106

Security Affairs

JUNE 19, 2023

Cado researchers recently detected an interesting attack pattern linked to an emerging cybercrime group tracked as Diicot (formerly, “Mexals”) and described in analyses published by Akamai and Bitdefender. Evidence collected by Cado suggests the deployment of a botnet having DDoS capabilities.

Cybercrime 87

Cybercrime DDOS Internet Internet 87

Security Affairs

JULY 8, 2022

The operators behind the TrickBot malware are systematically targeting Ukraine since the beginning of the war in February 2022. Since February, the Conti ransomware group has taken over TrickBot malware operation and also planned to replace it with BazarBackdoor malware. ” concludes IBM. ” concludes IBM.

Cybercrime 95

Cybercrime Malware DDOS Ransomware 95

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. Client-side attacks on the wane.

Cybercrime 137

Cybercrime Banking Malware Ransomware 137

Security Affairs

MAY 15, 2022

Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. The channel was used to share information about malware listings and updates. SecurityAffairs – hacking, malware).

Ransomware 80

Ransomware DDOS Cybercrime Malware 80

Security Affairs

JANUARY 14, 2022

Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. Ukrainian police arrested members of a ransomware affiliate group that is responsible for attacking at least 50 companies in the U.S. and Europe. and Europe. The operation was conducted by the SBU Cyber ??Department

Ransomware 116

Ransomware DDOS Telecommunications Malware 116

Security Affairs

OCTOBER 6, 2022

Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a recently discovered sample of a new malware called LilithBot to the Eternity group (aka EternityTeam; Eternity Project). ” reads the report published by Zscaler.

Malware 93

Malware DDOS Ransomware Cryptocurrency 93

Security Affairs

JUNE 25, 2023

Someone is sending mysterious smartwatches to the US Military personnel CISA orders govt agencies to fix recently disclosed flaws in Apple devices VMware fixed five memory corruption issues in vCenter Server Fortinet fixes critical FortiNAC RCE, install updates asap More than a million GitHub repositories potentially vulnerable to RepoJacking New Mirai (..)

DDOS 91

DDOS Cybercrime Spyware Malware 91

Digital Shadows

NOVEMBER 10, 2020

Ransomware operations have undoubtedly dominated the 2020 cyber threat landscape thanks to multi-million-dollar heists and new malware variants popping up. The post Work Smarter, Not Harder: The Evolution of DDoS Activity in 2020 first appeared on Digital Shadows.

DDOS 98

DDOS Cyber threats Ransomware Malware 98

Security Affairs

MARCH 22, 2023

During the period covered by the report, the expert identified the following prime threats: ransomware attacks (38%), data related threats (30%), malware (17%), denial-of-service (DoS), distributed denial-of-service (DDoS) and ransom denial-of-service (RDoS) attacks (16%), phishing / spear phishing (10%), supply-chain attacks (10%).

Ransomware 86

Ransomware DDOS Cyber threats Phishing 86

Security Affairs

JUNE 17, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9 Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches 90

Data breaches DDOS Backups Firewall 90

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In a separate advisory (pdf) , the ACSC says it is also aware of an ongoing ransomware campaign using the Avaddon Ransomware malware.

Ransomware 110

Ransomware VPN Encryption Cybercrime 110

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Pierluigi Paganini.

Ransomware 100

Ransomware DDOS Passwords Backups 100

Security Affairs

NOVEMBER 27, 2022

Data from 5.4M Data from 5.4M Data from 5.4M Follow me on Twitter: @securityaffairs and Facebook and Mastodon. Pierluigi Paganini. SecurityAffairs – hacking, newsletter ).

DDOS 115

DDOS Cybercrime Cryptocurrency Ransomware 115

Krebs on Security

MARCH 20, 2020

This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai , a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity. Image: Palo Alto Networks. Zyxel issued a patch for the flaw on Feb.

IoT 239

IoT DDOS VPN Firewall 239

Security Affairs

NOVEMBER 2, 2023

Rapid7 identified exploitation attempts of the CVE-2023-46604 flaw to deploy HelloKitty ransomware in two different customer environments. “In both instances, the adversary attempted to deploy ransomware binaries on target systems in an effort to ransom the victim organizations. ” reads the report published by Rapid7.

Ransomware 120

Ransomware Cybercrime Software Encryption 120

Security Affairs

APRIL 3, 2021

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020. Source ZDNet.

Ransomware 98

Ransomware Encryption Malware Cybercrime 98

Security Affairs

APRIL 23, 2021

The Darkside ransomware gang is enhancing its extortion tactics to interfere with the valuation of stocks of companies that are listed on NASDAQ or other stock markets. The Darkside ransomware operators are stepping up their extortion tactics targeting companies that are listed on NASDAQ or other stock markets with a new technique.

Ransomware 122

Ransomware Marketing DDOS Cybercrime 122

Security Affairs

MAY 16, 2021

Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. Acer Finance operates as an investment management company. Pierluigi Paganini.

Hacking 113

Hacking Ransomware DDOS Healthcare 113

Security Affairs

APRIL 19, 2022

Kaspersky discovered a flaw in the encryption process of the Yanluowang ransomware that allows victims to recover their files for free. Researchers from Kaspersky discovered a vulnerability in the encryption process of the Yanluowang ransomware that can be exploited to recover the files encrypted by the malware without paying the ransom.

Ransomware 90

Ransomware Encryption DDOS Malware 90

Security Affairs

APRIL 30, 2023

ViperSoftX uses more sophisticated encryption and anti-analysis techniques Atomic macOS Stealer is advertised on Telegram for $1,000 per month CISA warns of a critical flaw affecting Illumina medical devices OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands Cisco discloses a bug in the Prime Collaboration Deployment (..)

Cybercrime 91

Cybercrime Malware Hacking Accountability 91

SecureList

NOVEMBER 9, 2022

Supply-chain will become more of a sweet spot for targeted ransomware and state-sponsored espionage campaigns. Businesses will still be mostly concerned with ransomware. We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side.

Cybersecurity 121

Cybersecurity Cyber Insurance Cybercrime IoT 121

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 91

Data breaches DDOS Artificial Intelligence Ransomware 91

Security Affairs

JULY 5, 2023

The Port of Nagoya, the largest port in Japan, suffered a ransomware attack that severely impacted its operations. The Port suffered a ransomware attack that is impacting the operation of container terminals. Notably, this port is the largest exporter of cars in Japan and where the Toyota Motor Corporation exports most of its cars.

Ransomware 84

Ransomware DDOS Cyber Attacks Accountability 84

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. Other ransomware attacks recently hit US hospitals. Threat actors continue to target hospitals.

Ransomware 125

Ransomware Healthcare Data breaches Cyber Attacks 125

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa. of the overall number.

Cybercrime 78

Cybercrime Scams DDOS Banking 78

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Who is Hunters International?

Ransomware 113

Ransomware Hacking Insurance Healthcare 113

IT Security Guru

JULY 19, 2021

Although cybercrime as a whole has seen a rise during the pandemic, arguably ransomware has been one of the more successful and lucrative attack types. Our own research report, the State of Encrypted Attacks Report 2020 , found that there had been a 500 per cent rise in ransomware compared to 2019.

Ransomware 96

Ransomware Digital transformation Antivirus DDOS 96

Security Affairs

NOVEMBER 20, 2022

If you want to also receive for free the newsletter with the international press subscribe here. Ukraine Police dismantled a transnational fraud group that made €200 million per year Lockbit gang leaked data stolen from global high-tech giant Thales.

DDOS 88

DDOS Cybercrime Ransomware Phishing 88

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. Advanced threat actors from countries placed under economic sanctions may rely more on ransomware imitating cybercriminal activity. Analysis of forecasts for 2021.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

Digital Shadows

FEBRUARY 22, 2023

Let’s focus attention on three key areas that have seen significant changes: state-sponsored activity, cybercrime, and hacktivism. And wiper malware, such as “CADDYWIPER” and “PAYWIPE,” set their sights on disrupting business continuity and operational plans. The ransomware scene has been affected, too.

Cyber threats 96

Cyber threats Cybercrime Cyber Attacks DDOS 96

Security Affairs

MAY 21, 2023

X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S. X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S.

Data breaches 90

Data breaches Cybercrime Ransomware Passwords 90

Security Affairs

JULY 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

DDOS 91

DDOS Hacking Spyware Surveillance 91

Security Affairs

JULY 3, 2022

The role of Social Media in modern society – Social Media Day 22 interview Experts shared PoC exploit code for RCE in Zoho ManageEngine ADAudit Plus tool A ransomware attack forced publishing giant Macmillan to shuts down its systems SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide A long-running cryptomining campaign (..)

Telecommunications 87

Telecommunications Media DDOS Malware 87

Security Affairs

DECEMBER 11, 2022

If you want to also receive for free the newsletter with the international press subscribe here. Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Firewall 94

Firewall Banking DDOS Hacking 94

Security Affairs

MARCH 27, 2021

Clop ransomware operators now email victim’s customers and ask them to demand a ransom payment to protect their privacy to force victims into paying the ransom. ” Clop ransomware operators invited the victim’s customer to contact the victim and ask it protect their privacy by paying the ransomware. .

Ransomware 100

Ransomware DDOS Banking Hacking 100

Security Affairs

OCTOBER 14, 2021

Researchers spotted a new strain of ransomware, dubbed Yanluowang, that was used in highly targeted attacks against enterprises. Researchers from Symantec Threat Hunter Team discovered a ransomware family, tracked as Yanluowang ransomware that was used in highly targeted attacks against large enterprises. Pierluigi Paganini.

Ransomware 91

Ransomware Encryption DDOS Hacking 91