27 Mar 2020

Ryuk Ransomware Keeps Targeting Hospitals During the Pandemic

The operators behind Ryuk Ransomware continue to target hospitals amid the recent pandemic, even as organizations are overwhelmed by the number of cases and insufficient medical gear and technology. Last week, BleepingComputer reached out to various ransomware groups and asked if they would continue to target the medical industry, including

Read More
27 Mar 2020

667% spike in email phishing attacks due to coronavirus fears

Amid the coronavirus pandemic, attackers are capitalizing on public fear and taking advantage of heightened emotions by targeting victims in email phishing attacks related to COVID-19. The number of email attacks related to COVID-19 has been increasing since January according to data collected by cybersecurity firm Barracuda Networks. However, the

Read More
26 Mar 2020

Cincinnati Firm Faces $5m Data Breach Lawsuit

In Cincinnati, freight brokerage company Total Quality Logistics faces a $5 million lawsuit over a data breach that occurred in February. The company suffered from a cyberattack on the 23rd of February that compromised its customer and carrier information after cybercriminals breached the company’s online web portal. The information disclosed

Read More
26 Mar 2020

Chinese Hackers Exploit Cisco, Citrix Flaws in Massive Espionage Campaign

APT41, a Chinese threat group that is responsible for dozens of destructive cyberattacks, has been exploiting vulnerabilities in Citrix NetScaler/ADC, Cisco routers and Zoho ManageEngine Desktop Central as part of a new espionage campaign. However, researchers have not yet determined if the campaign is targeting specific organizations or what these

Read More
26 Mar 2020

Tupperware Hit By Card Skimmer Attack

Malwarebytes Labs researchers have discovered a cyberattack on the Tupperware website, targeting customers payment card information via a digital credit card skimmer disguised inside an image file. Researchers found the malicious code when an anomaly in the iframe container was caught, prompting the researchers to look closer at the code.

Read More
25 Mar 2020

HHS.gov Open Redirect Used by Coronavirus Phishing to Spread Malware

Malware payloads are being pushed onto victims’ systems through an HHS.gov open redirect attack. An open redirect is a web address that automatically redirects users, commonly used by malicious actors to send victims to phishing pages or to deliver malware payloads under the guise of legitimate services. HHS.gov, the latest

Read More
25 Mar 2020

WHO Targeted in Espionage Attempt, COVID-19 Cyberattacks Spike

The World Health Organization (WHO) has been targeted by cybercriminals in a series of attempted attacks amid the COVID-19 pandemic. New evidence also shows that the DarkHotel APT group has tried to infiltrate WHO’s networks to steal information from the organization, although it remains unclear what information the group was

Read More
25 Mar 2020

Malware Found Hidden in Android Utility Apps, Children’s Games

Researchers have discovered a new malware family operating in 56 different apps previously available on Google’s Play Store. The applications have already been collectively downloaded almost a million times. The new malware, called Tekya, tries to commit mobile ad fraud by imitating user actions to click on malicious advertisements. Check

Read More
25 Mar 2020

Apple blocks third-party cookies in Safari

Apple released Safari 13.1 yesterday, which included new updates to Safari’s Intelligence Tracking Prevention (ITP) privacy feature. The most major shift was that Apple products will now block all third-party cookies while in Safari by default. Apple’s latest move means that online advertisers and analytics firms will not be able

Read More
24 Mar 2020

Hackers Hijack Routers’ DNS to Spread Malicious COVID-19 Apps

Researchers have found that a new cyberattack campaign is hijacking router’s DNS settings, changing web browser display alerts that show fake COVID-19 information claiming to be an app controlled by the World Health Organization. However, behind the fraudulent app is Vidar information-stealing malware. Over the past five days, several users

Read More