Phishers Increasingly Incorporating reCaptcha API into Campaigns

Security researchers observed that digital attackers are increasingly incorporating the reCaptcha API into their phishing campaigns. Barracuda Networks explained that malicious actors are starting to outfit their phishing attempts with reCaptcha walls … Continue reading Phishers Increasingly Incorporating reCaptcha API into Campaigns

Operators of Shade Ransomware Publish 750K Decryption Keys

The operators of Shade ransomware published the decryption keys for 750,000 of their victims in an effort to help them recover their data. The authors of Shade used a GitHub post to make decryption keys available to all of its remaining victims (approx… Continue reading Operators of Shade Ransomware Publish 750K Decryption Keys

Zero-Day Flaw Allowed Attackers to Achieve RCE on Firewalls

British security firm Sophos determined that malicious actors had abused a zero-day vulnerability to achieve remote code execution (RCE) on some of its firewall products. According to Sophos, the attack chain began when digital attackers exploited a ze… Continue reading Zero-Day Flaw Allowed Attackers to Achieve RCE on Firewalls

New Phishing Campaign Spoofed Skype to Steal Users’ Credentials

A phishing campaign leveraged malicious emails to spoof video calling platform Skype in order to steal users’ account credentials. Cofense observed that the campaign began with an attack email that appeared to originate from Skype. Specifically, … Continue reading New Phishing Campaign Spoofed Skype to Steal Users’ Credentials

DoppelPaymer Ransomware Struck City in Los Angeles County

DoppelPaymer ransomware allegedly struck a U.S. coastal city in Los Angeles County by stealing its unencrypted data and then encrypting its devices. As reported by Bleeping Computer, the operators of DoppelPaymer updated their “Dopple Leaks&#8221… Continue reading DoppelPaymer Ransomware Struck City in Los Angeles County

Oil and Gas Sectors Targeted by AgentTesla Infostealer Campaigns

Digital attackers used spearphishing campaigns to target oil and gas companies with samples of the AgentTesla infostealer family. In the first campaign spotted by Bitdefender, malicious actors sent out emails that appeared to originate from Egyptian st… Continue reading Oil and Gas Sectors Targeted by AgentTesla Infostealer Campaigns

Ragnar Locker Ransomware Demands 1580 BTC from EDP

Ragnar Locker ransomware demanded 1580 bitcoin (approximately $11 million) as ransom from Portuguese electric utilities company Energias de Portuga (EDP). As reported by Bleeping Computer, the operators of Ragnar Locker published a new post on their da… Continue reading Ragnar Locker Ransomware Demands 1580 BTC from EDP

Bad Actors Infiltrated New York’s State Government Computer Network

Officials revealed that malicious actors had succeeded in infiltrating the computer network serving New York’s state government. According to the Wall Street Journal (WSJ), officials revealed on April 13 that New York’s Office of Informatio… Continue reading Bad Actors Infiltrated New York’s State Government Computer Network

New Wiper Malware Blames Two Security Researchers for Infection

A new wiper malware falsely informed victims in its infection notice that two security researchers had been responsible for attacking them. According to Bleeping Computer, users who downloaded programs from free software and crack sites found that they… Continue reading New Wiper Malware Blames Two Security Researchers for Infection

Nearly Half of Employees Don’t Know What to Do When Ransomware Hits

A survey revealed that approximately half of employees didn’t know how to respond in the event their organization suffered a ransomware infection. In its survey of North American business employees, Kaspersky found that 45% of respondents overall… Continue reading Nearly Half of Employees Don’t Know What to Do When Ransomware Hits