Glupteba Botnet Still Active Despite Google’s Disruption Efforts

An analysis conducted by OT and IoT cybersecurity firm Nozomi Networks shows that the Glupteba botnet is still active following Google’s efforts to disrupt the cybercrime operation.
read more Continue reading Glupteba Botnet Still Active Despite Google’s Disruption Efforts

Security Firms Warn Microsoft of Signed Drivers Used to Kill EDR, AV Processes

Several cybersecurity firms have warned Microsoft that cybercriminals have been using signed malicious drivers to kill processes associated with antivirus (AV) and endpoint detection and response (EDR) products.
read more Continue reading Security Firms Warn Microsoft of Signed Drivers Used to Kill EDR, AV Processes

Healthcare Organizations Warned of Royal Ransomware Attacks

The US Department of Health and Human Services (HHS) is warning healthcare organizations of the threat posed by ongoing Royal ransomware attacks.
Initially spotted in September 2022, the ransomware family is employed by a financially-motivated threat a… Continue reading Healthcare Organizations Warned of Royal Ransomware Attacks

LF Electromagnetic Radiation Used for Stealthy Data Theft From Air-Gapped Systems

Mordechai Guri, a cybersecurity researcher from the Ben-Gurion University of the Negev in Israel who specializes in air gap jumping, has released a paper detailing yet another method that can be used to stealthily exfiltrate data from systems isolated … Continue reading LF Electromagnetic Radiation Used for Stealthy Data Theft From Air-Gapped Systems

Iranian Hackers Deliver New ‘Fantasy’ Wiper to Diamond Industry via Supply Chain Attack

An Iran-linked advanced persistent threat (APT) actor named Agrius is using a new wiper in attacks targeting entities in South Africa, Israel and Hong Kong, cybersecurity firm ESET reports.
read more Continue reading Iranian Hackers Deliver New ‘Fantasy’ Wiper to Diamond Industry via Supply Chain Attack