Cybersecurity researchers at Check Point have identified six different fraudulent anti-virus applications that have since been removed from the Google Play store. The applications are parading as …
E-commerce Bots Use Domain Registration Services for Mass Account Fraud
Cybersecurity professionals have warned the public about an uptick in e-commerce risks before major holidays. However, new information shows that e-commerce bots are more frequently using domain …
Continue Reading about E-commerce Bots Use Domain Registration Services for Mass Account Fraud
Cryptomining Attack Exploits Docker API Misconfiguration Since 2019
A campaign dubbed "Autom" that exploits misconfigured Docker APIs to gain network entry and construct backdoors on compromised hosts has been discovered by cybersecurity researchers. The campaign …
Continue Reading about Cryptomining Attack Exploits Docker API Misconfiguration Since 2019
Telegram Abused to Steal Crypto-Wallet Credentials
Attackers are leveraging the Telegram messaging platform to target the crypto-wallets of users. The attackers behind the campaign are using the Echelon information stealer in an effort seeking to …
Continue Reading about Telegram Abused to Steal Crypto-Wallet Credentials
Proofpoint Phish Harvests Microsoft O365, Google Logins
A new campaign impersonating Proofpoint has successfully avoided Microsoft email security. The campaign consists of phishers attempting to fool targets into believing the email comes from Proofpoint, …
Continue Reading about Proofpoint Phish Harvests Microsoft O365, Google Logins
Former French President Nicolas Sarkozy guilty of illegal campaign financing, receives 1-year sentence
On Thursday, former French President Nicolas Sarkozy was sentenced to one year in prison due to illegal campaign financing in his failed 2012 re-election campaign. This marks the first time that a …
SolarWinds Attackers Hit Active Directory Servers with FoggyWeb Backdoor
Microsoft has warned that the Nobelium APT is currently compromising single-sign-on services to install a post-exploitation backdoor. The backdoor maintains network persistence and steals data from …
Continue Reading about SolarWinds Attackers Hit Active Directory Servers with FoggyWeb Backdoor
New Raccoon Stealer Campaign Underscores an Evolving Threat
Sophos researchers have detailed a new Racoon Stealer campaign that underscores the evolution of the information-stealer. According to Sophos, the Racoon Stealer has been distributed through a dropper …
Continue Reading about New Raccoon Stealer Campaign Underscores an Evolving Threat
Praying Mantis Threat Group Targeting US Firms in Sophisticated Attacks
Security researchers at Sygnia reported observing attacks originating from a sophisticated threat actor that bore resemblance to the hallmarks of an Australian campaign that targeted high-profile …
Continue Reading about Praying Mantis Threat Group Targeting US Firms in Sophisticated Attacks
Chinese Hackers Target Government Entities in Widespread Campaign
According to a new report from Kaspersky, a recently discovered advanced persistent threat (APT) dubbed LuminousMoth is targeting a large number of organizations in South Asia. The campaign involves …
Continue Reading about Chinese Hackers Target Government Entities in Widespread Campaign