The North Korean APT group known as Kimsuky or Hidden Cobra has allegedly been actively attacking businesses posing as reporters located in South Korea. The US Cybersecurity and Infrastructure Security Agency (CISA) posted advisory warning businesses of the new ploy to gain access to US information. The group has been

Hackers have taken over President Trump’s 2020 election campaign website, replacing the cover page with fraudulent claims that Trump was involved in the origin of COVID-19 as well as guilty of criminal collusion with foreign actors. Other parts of the site were replaced with cryptocurrency scam advertising. Journalist Gabriel Lorenzo

On Tuesday, Facebook released a warning stating that threat actors are utilizing social media to claim responsibility for illegitimate “major electoral systems hacks” or are pretending to have otherwise disrupted the 2020 Presidential election process. This is referred to in the advisory as perception hacking, and Facebook states that it

In an advisory warning published last week by the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), the government notified the public of a sophisticated Russian hacking group called Berserk Bear. The group allegedly carried out a broad hacking campaign targeting US state, local, and territorial government agencies,

A new digital extortion campaign targeting health care services provider Vastaamo is allegedly threatening to leak patients’ therapy notes if demands are not met. Vastaamo has been working with both law enforcement and private security firm Nixu to determine solutions to remediate the attack. Vastaamo claims that at least one

Hall County, Georgia, is now one of the first districts to suffer from a breach amidst the upcoming elections, targeted by an attack that exposed the county’s database of voter signatures. The county has claimed that the voting process remains unimpacted by the ransomware attack, the incident proves how important

Russia’s COVID-19 “Sputinik V” vaccine contractor Dr. Reddy’s has been hit with a cyberattack causing it to temporarily close its plants and isolate its data centers. Dr. Reddy’s is a major genetics producer headquartered in India with plants across the world, including Brazil, Russia, the UK, and the US. The

On October 22, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) determined to impose sanctions on five distinct Iranian entities known to have attempted to conduct election interference on the US and its voters. These attempts include spreading disinformation and executing malign influence campaigns aimed to mislead

Security firm Akamai has published a report detailing criminal activity pertaining to a massive wave of credential stuffing attacks targeting the retail, travel, and hospitality industries. The campaign occurred between July of 2018 and June 2020. Akamai’s report includes examples of advertisements on the darknet demonstrating how cybercriminals gain financial

A botnet called KashmirBlack has been infecting thousands of websites running on content management systems such as WordPress, Joomla, and Drupal. The botnet uses Dropbox and GitHub to avoid detection and is focused on spamming and defacing hundreds of thousands of websites.  Security firm Imperva was the first to report