Collaborate Disseminate
Toll, a large Australian transportation company, was hit with a new ransomware attack, only three months after a previous incident. This time, the malware is named Nefilim, and attackers also stole data from the affected servers. The first attack, whic… Continue reading Australian Transport Company Hit with Nefilim Ransomware Months after a Maito Ransomware Attack
A slew of seven vulnerabilities identified in the Thunderbolt port allow an attacker with physical access to the device to bypass all security, no matter the platform. It affects all laptops and computers built since 2011. The vulnerabilities, known co… Continue reading Thunderspy Attack Affects all Computers with Thunderbolt Released in the Past Decade
InfinityBlack, a hacking group based in Poland and Switzerland, was taken down by Polish and Swiss law enforcement after the arrest of five alleged active members. InfinityBlack has a very specific operating strategy, all based on stealing loyalty sche… Continue reading European Cyber Units Dismantle InfinityBlack Hacking Group in Poland
Almost 30% of all organizations in Europe and the Middle East continue to rely on passwords as their exclusive authentication method, despite the dangers posed by using such a strategy, according to a recent survey.
The post Almost a Third o… Continue reading Almost a Third of Companies in Europe and Middle East Still Rely on Classic Credentials for Security
VPN apps PrivateVPN and Betternet were plagued by a vulnerability that could have let attackers push fake updates to the apps and install malicious apps. One reason people use a VPN solution is to stay safe in a dangerous online world. A good example i… Continue reading PrivateVPN and Betternet Apps Vulnerability Let Attackers Send Malicious Updates
A new survey reveals a worrying habit of people reusing old passwords in enterprise environments, not to mention employees sharing the same password between private and work accounts.
The post Employees Share an Average of 8 Passwords betwee… Continue reading Employees Share an Average of 8 Passwords between Personal and Work Accounts, Survey Shows
A new phishing campaign targeting U.S. users is trying to deploy Remcos, a powerful trojan that allows an attacker to gain full control of a victim’s computer, according to research from Microsoft Security Intelligence. A multitude of phishing an… Continue reading Attackers Try to Deploy Remcos Malware with COVID-19-related Messages
Kaiji is a new IoT malware botnet written in Golang from scratch that searches for poorly configured SSH services and brute-forces its way in. But even if it’s a new strand of malware, a powerful security solution can still pick up its nefar… Continue reading New Kaiji Botnet Malware Targets IoT, But ‘New’ Doesn’t Mean ‘Undetectable’
A new phishing campaign is targeting members of Financial Industry Regulatory Authority (FINRA), with emails purporting to be from FINRA officers. The goal is to obtain the members’ user names and passwords for Microsoft Office or SharePoint. Hac… Continue reading Phishing Campaign Targets FINRA in Search for Microsoft Office or SharePoint Credentials
An advisory from the US Department of Homeland Security (DHS) Cybersecurity, the Infrastructure Security Agency (CISA) and the UK’s National Cyber Security Centre (NCSC) warns of a coordinated attack against the healthcare industry and other esse… Continue reading US and UK Cyber Security Agencies Warn of APT Attacks against Healthcare Organizations