22 Jul 2021

NPM Package Steals Passwords via Chrome’s Account-Recovery Tool

A new widespread software supply-chain attack has been discovered by researchers, this time consisting of a password stealer harvesting credentials from Chrome on Windows systems via a tool called ChromePass. According to researchers, the campaign was discovered after professionals caught the malware stealing credentials, listening for incoming commands from the

Read More
22 Jul 2021

Saudi Aramco denies breach after hackers hawk stolen files

Saudi Aramco has denied allegations of a cyberattack despite claims made by ZeroX, a threat actor who reports having stolen 1T of sensitive data from the company. Saudi Aramco is one of the largest oil companies in the world. Cybercriminals allegedly contact news outlets claiming to have stolen data ranging

Read More
21 Jul 2021

Macron Among 14 Heads of States on Potential Spyware List

On Tuesday, Amnesty International stated that French President Emmanual Macron was included on a list of 14 current or former heads of state who were potentially targeted for hacking through a product called Pegasus made by the Israeli spyware firm NSO Group. The organization called the incident an unprecedented revelation

Read More
21 Jul 2021

Law Firm to the Fortune 500 Breached with Ransomware

Campbell Conroy & O’Neil P.C., a US law firm to several Fortune 500 companies, has admitted that a ransomware attack that occurred in February resulted in a data breach. The company boasts clients such as Apple, Boeing, IBM, Exxon Mobil, Fisher-Price, British Airways, Chrysler, Honda, and Toyota, among other huge

Read More
21 Jul 2021

This new password-stealing Windows malware is distributed via ads for cracked software

Cybersecurity company Bitdefender has discovered a new form of malware that is delivered to victims via advertisements that appear in search results. Bitdefender states that the malware is being used as a gateway for attackers to steal passwords, deliver additional malware, and install cryptocurrency miners. The malware targets Windows devices

Read More
20 Jul 2021

Hundreds of touchscreen ticket machines are offline after a ransomware attack

A ransomware attack has caused hundreds of self-service ticketing machines across the UK to go offline. The machines are located in the northern region of the country. Travellers have been encouraged to use mobile ticketing services while the machines are down. The attack comes just two months after roughly 600

Read More
20 Jul 2021

Ruthless Attackers Target Florida Condo Collapse Victims

Hackers are reportedly attempting to steal the identities of individuals who passed away in the Miami condo-collapse tragedy. Families of victims have been advised to check the credit of their deceased relatives due to a group of ruthless hackers targeting the victims in a new-identify theft scheme. According to Surfside

Read More
19 Jul 2021

Recent Attacks Lead to Renewed Calls for Banning Ransom Payments

Several recent major cyberattacks have led to new calls for banning ransom payments. The attacks have disrupted businesses, caused supply chain ripples in the US economy, and wreaked havoc on hundreds of companies. Most notably, oil and gas transport network Colonial Pipeline and meat producer JBS USA were attacked within

Read More
19 Jul 2021

Linux Variant of HelloKitty Ransomware Targets VMware ESXi Servers

According to researchers on the MalwareHunterTeam, HelloKitty has joined a growing list of ransomware gangs targeting VMware ESXi. Researchers found a Linux encryptor used by the HelloKitty ransomware gang in an attack against videogame developer CD Projekt Red. The researchers reported that the attack, which occurred in February, targeted the

Read More
19 Jul 2021

Windows 0-Days Used Against Dissidents in Israeli Broker’s Spyware

According to new reports, a unique set of spyware strains created by an Israeli firm used by governments across the world to conduct surveillance on dissidents has been defanged by Microsoft. The company is called Candiru or Sourgum and specializes in the sale of the DevilsTongue surveillance malware. The malware

Read More