Security Affairs

DECEMBER 6, 2021

Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. Pierluigi Paganini.

Malware 102

Malware VPN Telecommunications Accountability 102

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 90

Data breaches Telecommunications Banking Mobile 90

Krebs on Security

OCTOBER 12, 2020

has executed a coordinated legal sneak attack in a bid to disrupt the malware-as-a-service botnet Trickbot , a global menace that has infected millions of computers and is used to spread ransomware. 27, UHS shut down its computer systems at healthcare facilities across the United States in a bid to stop the spread of the malware.

Healthcare 354

Healthcare Internet Internet Ransomware 354

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. Educate your employees on threats and risks such as phishing and malware.

Cybersecurity 214

Cybersecurity Cybercrime Education Passwords 214

Security Affairs

APRIL 11, 2020

The attackers may have gained access to some users’ login credentials after deploying malware on both websites. The attackers inserted malicious computer code on these websites to steal some users’ login credentials,” reads a message posted to both site’s by the SFO’s Airport Information Technology and Telecommunications (ITT) director.

Data breaches 139

Data breaches Hacking Telecommunications Passwords 139

Security Affairs

DECEMBER 15, 2021

Researchers uncovered a new Seedworm campaign targeting telecommunication and IT service providers in the Middle East and Asia. The threat actors don’t use custom malware and instead rely on legitimate tools, publicly available malware, and living-off-the-land tactics. [REDACTED][ ]com/ews.

Telecommunications 90

Telecommunications Passwords Phishing Hacking 90

Security Affairs

DECEMBER 31, 2020

An Emotet campaign hit Lithuania, the malware has infected systems at the National Center for Public Health (NVSC) and several municipalities. A large-scale Emotet campaign hit Lithuania, the malware has infected the networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities. Security Center.

Passwords 100

Passwords Malware Telecommunications Banking 100

Malwarebytes

APRIL 14, 2022

Zloader or Zbot are common names used to refer to any malware related to the ZeuS family. Zloader has a Domain Generating Algorithm (DGA) embedded within the malware that creates additional domains as a fallback or backup communication channel for the botnet. Legal action. Domain Generating Algorithm. Disruption.

Backups 126

Backups Telecommunications Banking Internet 126

Security Affairs

DECEMBER 30, 2020

.” T-Mobile said that threat actors did not access names on the account, physical or email addresses, financial data, credit card information, social security numbers, tax ID, passwords, or PINs. The telecommunication giant is in the process of notifying impacted customers.

Data breaches 131

Data breaches Mobile Telecommunications Wireless 131

Security Affairs

OCTOBER 19, 2021

Symantec spotted a previously unknown nation-state actor, tracked as Harvester, that is targeting telecommunication providers and IT firms in South Asia. “The Harvester group uses both custom malware and publicly available tools in its attacks, which began in June 2021, with the most recent activity seen in October 2021.

Telecommunications 95

Telecommunications Government Malware Encryption 95

SecureWorld News

JUNE 18, 2023

Gaming (58.7%) and telecommunications (47.7%) had the highest bad bot traffic on their websites and applications. These unsolicited messages often contain malware, phishing links, or other deceptive content, intending to deceive unsuspecting recipients. Countries with High Bot Traffic 4.

Passwords 72

Passwords Antivirus Identity Theft Internet 72

Security Affairs

JUNE 18, 2021

Most of the victims of the threat actor were located in Israel and Palestine, they belong to multiple industries including governments, telecommunications, finance, military, universities, and technology. Proofpoint researchers assess LastConn is very actively developed and maintained malware.

Government 83

Government Telecommunications Malware Passwords 83

Security Affairs

OCTOBER 25, 2021

The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST backdoor , TEARDROP malware , GoldMax malware , Sibot , and GoldFinder backdoors.

Telecommunications 105

Telecommunications Technology Hacking Malware 105

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile 89

Mobile Telecommunications Data breaches Identity Theft 89

SecureWorld News

AUGUST 23, 2021

Fifteen percent of the bot's IP addresses were located in Indonesia, while 17% came from India and Brazil combined, meaning there is a chance many devices in these countries are infected with malware. Mirai malware returns. Mirai, a prominent malware strain discovered in 2016, appears to be making a comeback, according to Cloudflare.

DDOS 97

DDOS Telecommunications Malware Passwords 97

SecureList

OCTOBER 7, 2022

Using LOLBINS, common legitimate pentesting tools, and fileless malware; misleading security researchers by placing false flags—these and other anti-forensic tricks often make threat attribution a matter of luck. The malware spreads through spear-phishing emails with a malicious Microsoft Office document as attachment.

Malware 143

Malware Computers and Electronics Telecommunications Encryption 143

Krebs on Security

APRIL 2, 2019

Canadian police last week raided the residence of a Toronto software developer behind “ Orcus RAT ,” a product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. An advertisement for Orcus RAT. In an “official press release” posted to pastebin.com on Mar. 2017 analysis of the RAT.

Advertising 226

Advertising Malware Marketing Software 226

Security Affairs

AUGUST 27, 2019

reported that Hexane is targeting organizations in the oil and gas industry and telecommunication providers. Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. The malware uses DNS and HTTP-based communication mechanisms. Security experts at Dragos Inc.

DNS 81

DNS Passwords Penetration Testing Social Engineering 81

Security Affairs

DECEMBER 11, 2018

Most of the targets were in the telecommunications and IT services sectors. Experts believe that the Seedworm APT is focused on telecommunications and IT services because they are interested in gaining access to customers of those firms. Changing Tools and Techniques. ” continues the analysis.

Telecommunications 93

Telecommunications Passwords Advertising Media 93

Security Affairs

JUNE 12, 2020

The incident took place in November 2019, when the systems at the company have been infected with malware. In response to the incident, the company has reset passwords for all its 8,000+ employees and has changed passwords and access keys for all its servers.

Mobile 87

Mobile Telecommunications Advertising Passwords 87

Thales Cloud Protection & Licensing

OCTOBER 23, 2023

The threat of attacks against Critical National Infrastructure (CNI) – energy, utilities, telecommunications, and transportation – is a top priority. Reducing the risk of attacks such as ransomware and malware on CNI will be paramount to the stability of national economies for the years to come.

Energy and Utilities 77

Energy and Utilities Cybersecurity Ransomware Technology 77

Krebs on Security

DECEMBER 29, 2022

This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware. DigitalOcean severs ties with Mailchimp after that incident , which briefly prevented the hosting firm from communicating with its customers or processing password reset requests.

Cryptocurrency 239

Cryptocurrency Cybercrime Computers and Electronics Scams 239

Security Affairs

AUGUST 21, 2019

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. Unlike other China-based actors, the group used custom malware in cyber espionage operations, experts observed 46 different malware families and tools in APT41 campaigns.

Malware 83

Malware Telecommunications Advertising Healthcare 83

Security Affairs

APRIL 1, 2020

The botnet was first spotted in May 2018, when it was that targeting Windows machines running MS-SQL servers to deploy a broad range of malware, including RAT and miners. The botnet tatgeted victims in various industries, including healthcare, aviation, IT & telecommunications and higher education sectors.

Telecommunications 106

Telecommunications Advertising Passwords Malware 106

Krebs on Security

DECEMBER 14, 2023

The malware used in the Target breach included the text string “ Rescator ,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. For starters, the text string “Rescator” was found in some of the malware used in the Target breach.

Cybercrime 233

Cybercrime Accountability Advertising Computers and Electronics 233

Security Affairs

JULY 13, 2019

“ Malware then guesses routers’ passwords , which new research from Avast shows are often weak. The router attacks involved an exploit kit that attempts to find the router IP on a network, then attempts to guess the password using common login credentials. ” reads a blog post published by Avast. concludes Avast.

DNS 71

DNS Passwords Advertising Banking 71

SecureList

DECEMBER 12, 2023

To find out, in 2022 we created a list of 700 companies worldwide from different industries: industrial, telecommunication, financial, retail, and others. Compromised users accounts from malware logs published on Darknet forums. But are we really conscious of the true scale of the threat?

Data breaches 86

Data breaches Accountability Telecommunications Malware 86

CyberSecurity Insiders

MARCH 5, 2021

On December 13 2020, multiple vendors such as FireEye and Microsoft reported emerging threats from a nation-state threat actor who compromised SolarWinds, and trojanized SolarWinds Orion business software updates in order to distribute backdoor malware called SUNBURST. It also appeared in the recent CISA Emergency Directive 20-01.

DNS 138

DNS Education Malware Telecommunications 138

Security Boulevard

JUNE 26, 2023

Lack of access to security features, such as passwords for admins, may result in a data breach where unauthorized persons within the organization may access sensitive data and leak it to malicious insiders. Every organization is, to varying degrees, potentially at risk of experiencing a data breach.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Security Affairs

OCTOBER 18, 2021

Sinclair Broadcast Group is a Fortune 500 media company, the group is a publicly-traded American telecommunications conglomerate having annual revenues of $5.9 In July, the company suffered another security incident, in response to the security breach it forced all Sinclair stations to reset their passwords. billion in 2020.

Ransomware 83

Ransomware Media Telecommunications Marketing 83

Security Affairs

APRIL 15, 2020

The attackers may have gained access to some users’ login credentials after deploying malware on both websites. The attackers inserted malicious computer code on these websites to steal some users’ login credentials,” reads a message posted to both site’s by the SFO’s Airport Information Technology and Telecommunications (ITT) director.

Data breaches 114

Data breaches Passwords Telecommunications Advertising 114

Thales Cloud Protection & Licensing

JULY 21, 2022

The threat of attacks against Critical National Infrastructure (CNI) – energy, utilities, telecommunications, and transportation – is now front of mind for many. Reducing the risk of attacks such as ransomware and malware on CNI will be of paramount importance to the stability of nation states for years to come. A Very Human Problem.

Cyber threats 71

Cyber threats Energy and Utilities Ransomware IoT 71

Security Affairs

JUNE 25, 2020

Just after the WorldNet Telecommunications, the LG electronics fall as a victim of the Maze ransomware operators.” . “As part of our regular darkweb monitoring, our researchers came across the data leak of LG Electronics been published by the Maze ransomware operators. ” reads the post published by Cyble.

Computers and Electronics 101

Computers and Electronics Ransomware Mobile Telecommunications 101

SecureList

NOVEMBER 14, 2022

From a different angle, reporting from The Intercept revealed mobile surveillance capabilities available to Iran for the purposes of domestic investigations that leverage direct access to (and cooperation of) local telecommunication companies. SIGINT-delivered malware.

Firmware 111

Firmware Surveillance Mobile Telecommunications 111

CyberSecurity Insiders

SEPTEMBER 21, 2021

Authentication and password management. Passwords are one of the least safe user authentication methods, yet they are also frequently used for web applications for safeguarding online data. OWASP recommends the following methods: Implement monitoring to identify attacks against multiple user accounts, utilizing the same password.

Authentication 79

Authentication Passwords Software Accountability 79

Security Boulevard

MARCH 24, 2022

On March 15th, research firm ESET reported a new data-wiping malware targeting Ukraine named CaddyWiper. [ 1 ] The malware “destroys user data and partitions information from attached drives”. Appendix: “CaddyWiper: New wiper malware discovered in Ukraine,” WeLiveSecurity, Mar. The UA-Cert attributes the activity to UAC-0056.

Ransomware 59

Ransomware Malware Government Antivirus 59

Krebs on Security

MAY 2, 2023

Mirza shows up in more than a year’s worth of “bot logs” created by a malware infection from the Redline infostealer. The website for NextLevelSupport says it was founded in 2017 by a Gary Plott , whose LinkedIn profile describes him as a seasoned telecommunications industry expert.

Marketing 274

Marketing Advertising Scams Telecommunications 274