Collaborate Disseminate
A new crypto-ransomware threat called “TFlower” is targeting corporate environments via exposed Remote Desktop Services (RDS). First discovered in August, the ransomware makes its way onto a corporate network after attackers hack into a mac… Continue reading TFlower Ransomware Targeting Businesses via Exposed RDS
The actors responsible for the Emotet botnet returned after a four-month period of inactivity with a new malspam campaign. On 16 September, SpamHaus security researcher Raashid Bhat spotted a spate of new spam emails written in Polish or German that co… Continue reading Emotet Botnet Returns After Four-Month Hiatus With New Spam Campaign
A new spam campaign is attempting to infect German-speaking users with samples of the destructive Ordinypt malware family. According to Bleeping Computer, the campaign sent spam emails masquerading as a job application from someone named Eva Richter. T… Continue reading Spam Campaign Targeting German Users with Ordinypt Malware
The COBALT DICKENS threat group stayed busy over the summer by launching a new global phishing operation targeting universities. In July and August 2019, Secureworks’ Counter Threat Unit (CTU) researchers observed COBALT DICKENS using compromised… Continue reading COBALT DICKENS Launched New Phishing Operation against Universities
A district within the Rockford Public Schools (RPS) system has confirmed it suffered a ransomware attack that affected parts of its network. On 6 September, District 205 of RPS posted a statement on Facebook in which it noted that its Internet, phones … Continue reading District in Rockford Public Schools Confirms Ransomware Attack
Digital attackers created a fake PayPal website to distribute samples of a new variant of the Nemty crypto-ransomware family. Security researcher nao_sec uncovered the ransomware variant after they came across a fake PayPal website. This site promised … Continue reading Fake PayPal Website Distributes New Variant of Nemty Ransomware
Digital criminals demanded $5.3 million in ransom from the City of New Bedford, Massachusetts following a ransomware attack. Jon Mitchell, Mayor of New Bedford, explained in a press briefing that the ransom demand came shortly after the City’s Ma… Continue reading Ransomware Attackers Demanded $5.3M from City of New Bedford
Security researchers spotted a phishing campaign that used SharePoint to bypass email gateway and other perimeter technologies. Cofense learned of the campaign after it analyzed an attack email sent from a compromised account @independentlegalassessors… Continue reading Phishing Campaign Used SharePoint to Bypass Email Perimeter Tech
Google has decided to expand the scope of one of its bug bounty programs as well as launch another security rewards initiative. On 29 August, Android Security & Privacy team members Adam Bacchus, Sebastian Porst, and Patrick Mutchler announced that… Continue reading Google Expands Scope of One Bug Bounty Program, Launches Another
Lumber Liquidators revealed that a malware infection on its systems compromised neither its employees’ nor its consumers’ sensitive data. On 27 August, the American hardwood flooring retailer said all but a very small number of stores had r… Continue reading Lumber Liquidators Says Malware Attack Didn’t Affect Sensitive Data