Check Point researchers have uncovered a recent campaign in which Russian threat actors targeted European embassies in various countries including Nepal, Guyana, Kenya, Italy, Liberia, Bermuda, and Lebanon. The hackers targeted embassy officials with emails containing sophisticated malicious files that were presented as official US State Department documents. Opening the

A security researcher with the GDI Foundation has found an unsecured database that exposed over 2 million Wi-Fi network passwords. The database has now been taken down by the host upon request of the researcher, who initially reached out to the app’s developer, but received no response. The leaky server

Threat actors are stepping up their efforts to weaponize vulnerabilities affecting Adobe products, new data by RiskSense shows. In 2018, a record-breaking 177 flaws were weaponized, which is 139% higher than in 2017. The study also found that last year almost three times more vulnerabilities were exploited in the wild before

US Secretary of State Mike Pompeo said that the US and Japan agree that Article 5 of the US-Japan Security Treaty, which obliges the countries to come to each other’s defense in case of an armed attack, could also be activated by a cyberattack because “international law applies in cyberspace

The FBI released its annual Internet Crime Complaint Center (IC3) report this week, which shows that the IC3 received close to 352,000 complaints related to cybercrimes last year, with the total losses from Internet-enabled crime estimated at $2.7 billion. The figures indicate a surge in cybercrime costs, which amounted to

New research by SonicWall indicates that cyber attacks involving weaponized PDFs have dramatically increased in the past months. Last year, the company detected 47,000 PDF-based attacks. However, attacks of this kind began increasing in December and surged in March when 73,000 attacks were discovered, far more than the total for

A new proofpoint report shows that phishing campaigns are increasingly targeting generic email accounts within companies (e.g. sales@company.com). Almost 30% of targeted phishing attacks in Q4 of 2018 were directed at such email addresses, which are usually shared between multiple employees, up from 13% in the previous quarter. The report

A new survey by the UK’s National Cyber Security Centre (NCSC) found that 42% of UK citizens expect that they will lose money as the result of a cyber scam, and a whopping 85% of people do not believe that they have sufficient knowledge to protect themselves against cybercrime. This

Last week, an independent security researcher managed to get access to a brand new encrypted messaging application used by French government officials. The application is available for download on the Google Play Store, but normally only people with an official government email address can use it. Despite reports claiming that

Marcus Hutchins, a British security researcher who helped to stop the 2017 global WannaCry ransomware attack by triggering the malware’s kill switch, has pleaded guilty to entering a conspiracy to create and distribute malware, and to aiding and abetting the distribution of malware. A further eight charges have been dropped