15 Oct 2021

US Government Warns of Insider and Ransomware Threat to Water Plants

The FBI, Cybersecurity and Infrastructure Security Agency (CISA) the NSA, and the Environmental Protection Agency (EPA) have issued a joint alert due to ongoing malicious cyber activity targeting the water and wastewater systems sector. The alert mentioned tactics, techniques, and procedures being used by several malicious actors in an attempt

Read More
15 Oct 2021

Verizon’s Visible Wireless Carrier Confirms Credential-Stuffing Attack

Verizon’s Visible wireless carrier has confirmed that user accounts were hijacked in a security incident. Users are posting stories of forcibly changed passwords and getting stuck with bills for new iPhones. According to Verizon, users lose control of their accounts on Wednesday, had their passwords and shipping addresses changed, and

Read More
14 Oct 2021

FreakOut Botnet Turns DVRs Into Monero Cryptominers

According to Juniper Threat Labs, the new Necro Python exploits targets’ Visual Tool DVRs used in surveillance systems. The Necro botnet was developed by the threat group FreakOut and has reportedly learned a new trick that consists of infecting the Visual Tool DVRs with a Monero crypto miner. In late

Read More
14 Oct 2021

Customers On Alert as E-Commerce Player Leaks 1.7+ Billion Records

Hariexpress, a Brazilian e-commerce firm, has accidentally exposed close to 1.8 billion records including customers’ and sellers’ personal information. The leak, which has put customers on high alert, was the result of a misconfigured Elasticsearch server. A team at SafetyDetective discovered the files in June and was able to trace

Read More
14 Oct 2021

University of Sunderland Hit by Suspected Cyber-Attack

The University of Sunderland in the UK has suffered from a suspected cyberattack that has resulted in extensive IT issues. The university confirmed the incident on Twitter, saying that its telephone lines, website, and IT systems are down. All online classes were canceled, and staff members were unable to access

Read More
13 Oct 2021

Russia Dominates State-Sponsored Attacks, says Microsoft

According to Microsoft data, Russia accounted for the majority of state-sponsored attacks over the past year, with the SolarWinds attackers dominating threat activity. The Digital Defense Report 2021 is the first of its kind released by Microsoft and covers a year-long period between June 2020 and June 2021. The report

Read More
13 Oct 2021

OpenSea ‘Free Gift’ NFTs Drain Cryptowallet Balances

OpenSea users should be aware of a current threat on the platform as cybercriminals exploit bugs in the world’s largest digital goods marketplace to create malicious artwork masqueraded as a free gift to unsuspecting users. OpenSea is the world’s largest digital collectible marketplace. Some users have found their cryptocurrency wallets

Read More
13 Oct 2021

Scammers abusing Apple developer program, stealing millions from victims on Tinder, Bumble, Grindr, Facebook Dating

Sophos has released a new report detailing a dating app scam in which attackers have stolen millions of dollars from people using platforms such as Tinder, Bumble, Grindr, Facebook Dating, and similar apps. Scammers gain the trust of targets on the dating apps, eventually convincing them to download fake crypto

Read More
12 Oct 2021

Ukraine Police Cuff Botnet Herder Who Controlled 100K Machines

Ukrainian law enforcement has reportedly arrested a suspected botnet herder who the government believes to have been responsible for controlling an automated network of roughly 100,000 compromised machines. The machines were used to launch spam campaigns, DDoS attacks, scan for vulnerabilities in websites to exploit, and brute-force users’ email passwords.

Read More
12 Oct 2021

Hospital Hacker Steals Patients’ Data

In New Mexico, an unknown cyberattacker has deleted data of patients at the San Juan Regional Medical center. According to reports, the hospital’s IT network was breached by an unauthorized individual in September of last year. The attack was reported to the United States Department of Health and Human Services’

Read More