Security researchers at Sygnia reported observing attacks originating from a sophisticated threat actor that bore resemblance to the hallmarks of an Australian campaign that targeted high-profile public and private entities. According to the researchers, the campaign targeting Australia last year seems to have shifted its focus to the US. The

According to a new report from Kaspersky, a recently discovered advanced persistent threat (APT) dubbed LuminousMoth is targeting a large number of organizations in South Asia. The campaign involves cyberespionage attacks on organizations and government entities and has been ongoing since at least October 2020. Contrary to similar attacks that

Researchers have discovered a global effort to steal information from international companies in the oil and gas sector. According to experts, the campaign has been underway for more than a year and uses sophisticated social engineering tactics to deliver Agent Tesla and other remote access trojans (RATs). Researchers at Intezer

APT group “Fancy Lazarus” has been ramping up its ransom DDoS efforts in several new campaigns against US entities. The group is known for masquerading as various APT groups to distract security researchers. Researchers state the APT group is launching a new series of attacks using a combination of the

Hackers suspected to have ties to Iran have reportedly targeted multiple Israeli companies with ransomware, representing a new campaign of attacks against the nation. The group calls itself N3tw0rm, or Networm, publishing evidence of different attacks to a dark website where they take responsibility for their hacks. On Sunday, the

Microsoft has warned of a new campaign utilizing legitimate website contact forms to target victims with URLs that ultimately deliver a banking Trojan. The attack campaign is delivering the IcedID banking Trojan to businesses via emails containing fake legal threats, creating a sense of urgency and luring victims into clicking

A campaign by Venezuelan military near the western border is causing a new wave of refugees. Thousands are defying the pandemic to pack into makeshift camps in Arauquita, Colombia. The Venezuelan refugees represent the world’s second largest group of internationally displaced people. The mounting tensions between left-wing Venezuela and right-wing

Cybercriminals have been taking advantage of the American Rescue Plan, the recently signed Covid-19 relief legislation. Researchers at Cofense found that threat actors are impersonating the IRS to distribute emails donning the agency’s official logo originating from a spoofed domain. The emails ask users to click on a malicious link

The REvil ransomware threat group has claimed responsibility for a recent campaign in which nine organizations were impacted. The threat group has allegedly infected nine different organizations located across Africa, Europe, Mexico, and the US. The REvil group uses the Sodinokibi ransomware to compromise networks and devices. The organizations include

A new ongoing campaign targeting security researchers has been uncovered by Google’s Threat Analysis Group. The attackers are going to great lengths to gain the victims’ trust, posing as researchers or students themselves. The campaign consists of sophisticated social engineering techniques to persuade the security researcher to open a Microsoft