Collaborate Disseminate
We continued to track Tomiris as a separate threat actor over three new attack campaigns between 2021 and 2023, and our telemetry allowed us to shed light on the group. In this blog post, we’re excited to share what we now know of Tomiris with the broader community, and discuss further evidence of a possible connection to Turla. Continue reading Tomiris called, they want their Turla malware back
Cryptocurrency thieves are targeting users of Chromium-based browsers – Google Chrome, Microsoft Edge, Brave Browser, and Opera – with an extension that steals credentials and can grab multi-factor authentication (MFA) codes. The malicious … Continue reading Rilide browser extension steals MFA codes
A DLL named guard64.dll, which was loaded into the infected 3CXDesktopApp.exe process, was used in recent deployments of a backdoor that we dubbed “Gopuram” and had been tracking internally since 2020. Continue reading Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack
A New York law firm has agreed to pay $200,000 in penalties to the state because it failed to protect the private and electronic health information of approximately 114,000 patients. How did the data theft happen? Heidell, Pittoni, Murphy and Bach (HPM… Continue reading New York law firm gets fined $200k for failing to protect health data
Some 12% of employees take customer details, health records, sales contracts and other confidential data when leaving a company, according to DTEX.
The post How to prevent data theft by existing and departing employees appeared first on TechRepublic.
Continue reading How to prevent data theft by existing and departing employees
The SYS01 infection chain uses DLL sideloading to steal information. Learn how to protect your business from this cybersecurity threat.
The post SYS01 stealer targets Facebook business accounts and browser credentials appeared first on TechRepublic.
Continue reading SYS01 stealer targets Facebook business accounts and browser credentials
CrowdStrike’s new threat report sees a big increase in data theft activity, as attackers move away from ransomware and other malware attacks, as defense gets better, and the value of data increases.
The post CrowdStrike: Attackers focusing on cloud exp… Continue reading CrowdStrike: Attackers focusing on cloud exploits, data theft
Attackers can exfiltrate company data stored in Google Cloud Platform (GCP) storage buckets without leaving obvious forensic traces of the malicious activity in GCP’s storage access logs, Mitiga researchers have discovered. GCP data exfiltration … Continue reading Google Cloud Platform allows data exfiltration without a (forensic) trace
During a recent get-together, my friend arrived late. She apologized, quickly explaining that she’d had trouble finding a charging station for her electric vehicle (EV). While she knew where the stations in her hometown were, she couldn’t easily find them on the road. This piqued my curiosity, and I began asking her questions about EVs […]
The post Will Charging Station Cyberattacks Impact the EV Boom? appeared first on Security Intelligence.
Continue reading Will Charging Station Cyberattacks Impact the EV Boom?
The trend will carry from the past 12 months when more than a third of executives polled by Deloitte said that cyberattacks targeted their financial and accounting data.
The post C-suite execs expect cyberattacks targeting financial data to increase th… Continue reading C-suite execs expect cyberattacks targeting financial data to increase this year