28 Oct 2020

North Korea-Backed Spy Group Poses as Reporters in Spearphishing Attacks, Feds Warn

The North Korean APT group known as Kimsuky or Hidden Cobra has allegedly been actively attacking businesses posing as reporters located in South Korea. The US Cybersecurity and Infrastructure Security Agency (CISA) posted advisory warning businesses of the new ploy to gain access to US information. The group has been

Read More
28 Oct 2020

Trump Campaign Website Defaced by Cryptocurrency Scam

Hackers have taken over President Trump’s 2020 election campaign website, replacing the cover page with fraudulent claims that Trump was involved in the origin of COVID-19 as well as guilty of criminal collusion with foreign actors. Other parts of the site were replaced with cryptocurrency scam advertising. Journalist Gabriel Lorenzo

Read More
28 Oct 2020

Facebook warns of “perception hacks” undermining trust in democracy

On Tuesday, Facebook released a warning stating that threat actors are utilizing social media to claim responsibility for illegitimate “major electoral systems hacks” or are pretending to have otherwise disrupted the 2020 Presidential election process. This is referred to in the advisory as perception hacking, and Facebook states that it

Read More
27 Oct 2020

The Russian Hackers Playing ‘Chekhov’s Gun’ With US Infrastructure

In an advisory warning published last week by the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), the government notified the public of a sophisticated Russian hacking group called Berserk Bear. The group allegedly carried out a broad hacking campaign targeting US state, local, and territorial government agencies,

Read More
27 Oct 2020

A Hacker Is Threatening to Leak Patients’ Therapy Notes

A new digital extortion campaign targeting health care services provider Vastaamo is allegedly threatening to leak patients’ therapy notes if demands are not met. Vastaamo has been working with both law enforcement and private security firm Nixu to determine solutions to remediate the attack. Vastaamo claims that at least one

Read More
26 Oct 2020

Georgia Election Data Hit in Ransomware Attack

Hall County, Georgia, is now one of the first districts to suffer from a breach amidst the upcoming elections, targeted by an attack that exposed the county’s database of voter signatures. The county has claimed that the voting process remains unimpacted by the ransomware attack, the incident proves how important

Read More
26 Oct 2020

COVID-19 Vaccine-Maker Hit with Cyberattack, Data Breach

Russia’s COVID-19 “Sputinik V” vaccine contractor Dr. Reddy’s has been hit with a cyberattack causing it to temporarily close its plants and isolate its data centers. Dr. Reddy’s is a major genetics producer headquartered in India with plants across the world, including Brazil, Russia, the UK, and the US. The

Read More
26 Oct 2020

Treasury Sanctions Iranian Entities for Attempted Election Interference

On October 22, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) determined to impose sanctions on five distinct Iranian entities known to have attempted to conduct election interference on the US and its voters. These attempts include spreading disinformation and executing malign influence campaigns aimed to mislead

Read More
23 Oct 2020

63 billion credential stuffing attacks hit retail, hospitality, travel industries

Security firm Akamai has published a report detailing criminal activity pertaining to a massive wave of credential stuffing attacks targeting the retail, travel, and hospitality industries. The campaign occurred between July of 2018 and June 2020. Akamai’s report includes examples of advertisements on the darknet demonstrating how cybercriminals gain financial

Read More
23 Oct 2020

Botnet Infects Hundreds of Thousands of Websites

A botnet called KashmirBlack has been infecting thousands of websites running on content management systems such as WordPress, Joomla, and Drupal. The botnet uses Dropbox and GitHub to avoid detection and is focused on spamming and defacing hundreds of thousands of websites.  Security firm Imperva was the first to report

Read More