Author Archives: Ravie Lakshmanan

A ransomware group with an Iranian operational connection has been linked to a string of file-encrypting malware attacks targeting organizations in Israel, the U.S., Europe, and Australia.
Cybersecurity firm Secureworks attributed the intrusions to a … Continue reading Iranian Hackers Leveraging BitLocker and DiskCryptor in Ransomware Attacks→

The European Commission on Wednesday proposed new regulation that would require tech companies to scan for child sexual abuse material (CSAM) and grooming behavior, raising worries that it could undermine end-to-end encryption (E2EE).
To that end, onl… Continue reading E.U. Proposes New Rules for Tech Companies to Combat Online Child Sexual Abuse→

Cybersecurity researchers have disclosed a massive campaign that’s responsible for injecting malicious JavaScript code into compromised WordPress websites that redirects visitors to scam pages and other malicious websites to generate illegitimate traf… Continue reading Thousands of WordPress Sites Hacked to Redirect Visitors to Scam Sites→

Google on Wednesday took to its annual developer conference to announce a host of privacy and security updates, including support for virtual credit cards on Android and Chrome.
“When you use autofill to enter your payment details at checkout, virtual… Continue reading Android and Chrome Users Can Soon Generate Virtual Credit Cards to Protect Real Ones→

Multiple cybersecurity authorities from Australia, Canada, New Zealand, the U.K., and the U.S. on Wednesday released a joint advisory warning of threats targeting managed service providers (MSPs) and their customers.
Key among the recommendations incl… Continue reading Government Agencies Warn of Increase in Cyberattacks Targeting MSPs→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the recently disclosed F5 BIG-IP flaw to its Known Exploited Vulnerabilities Catalog following reports of active abuse in the wild.
The flaw, assigned the identifier CVE-2022-1… Continue reading CISA Urges Organizations to Patch Actively Exploited F5 BIG-IP Vulnerability→

Researchers have detailed a previously undocumented .NET-based post-exploitation framework called IceApple that has been deployed on Microsoft Exchange server instances to facilitate reconnaissance and data exfiltration.
“Suspected to be the work of a… Continue reading Hackers Deploy IceApple Exploitation Framework on Hacked MS Exchange Servers→

An espionage-focused threat actor known for targeting China, Pakistan, and Saudi Arabia has expanded to set its sights on Bangladeshi government organizations as part of an ongoing campaign that commenced in August 2021.
Cybersecurity firm Cisco Talos… Continue reading Bitter APT Hackers Add Bangladesh to Their List of Targets in South Asia→

Cybersecurity researchers have discovered a number of malicious packages in the NPM registry specifically targeting a number of prominent media, logistics, and industrial firms based in Germany to carry out supply chain attacks.
“Compared with most ma… Continue reading Malicious NPM Packages Target German Companies in Supply Chain Attack→

A previously undocumented remote access trojan (RAT) written in the Go programming language has been spotted disproportionately targeting entities in Italy, Spain, and the U.K.
Called Nerbian RAT by enterprise security firm Proofpoint, the novel malwa… Continue reading Researchers Warn of Nerbian RAT Targeting Entities in Italy, Spain, and the U.K.→