The most recent McAfee Mobile Threat Report has revealed that four Korean transit apps were compromised in what has been deemed a “MalBus” attack. The applications had been available for over five years and had been downloaded hundreds of thousands of times, but have since been removed from the Google

On Thursday, State Department officials released a statement alleging that the GRU, a Russiam military intelligence agency, was responsible for cyberattacks that targeted Georgia in October. The attacks took down or defaced thousands of websites and disrupted the broadcasts of two television stations. Administration officials stated that the US and

Hamas cyber terrorists have compromised the phones of several hundred Israeli soldiers after infecting them with malware that was embedded in a “honey trap” operation in which Hamas-affiliated actors used profiles of attractive women to entice the Israeli soldiers. The soldiers were then conned into chatting over messaging platforms and

Travelex services remain offline after they were hit by a malware attack on New Year’s Eve. The network was compromised after a group of unknown cybercriminals launched a ransomware attack, hoping to meet ransom requests. The currency exchange company stated that all of its services had been taken offline to

Ransomware actors are actively exploiting a critical flaw in the Pulse Secure VPN service, a security researcher recently discovered. The flaw, tracked as CVE-2019-1150, enables attackers to establish unauthenticated HTTPS connections to enterprise networks using the VPN service. Pulse Secure patched the issue in April of last year, and on

In October of last year, Magecart actors breached Blue Bear Software, a major e-commerce platform for educational institutions, the vendor’s parent company Active Networks has announced. Magecart is an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the

A recent study by Microsoft provides insights into brute-force attacks targeting Remote Desktop Protocol (RDP) implementations in enterprise environments. Over the last few years, RDP brute-forcing has become a popular attack vector in ransomware and other malware campaigns. By analyzing RDP-login events on 45,000 enterprise workstations, Microsoft found that the

Over the weekend, threat actors defaced the website of the US Federal Depository Library Program (FDLP), in what could be the first Iranian state-sponsored cyberattack in retaliation for the US drone strike that killed Iranian military commander Maj. Gen. Qassim Suleimani at Baghdad airport last Friday. In the wake of

The US Department of Home Security (DHS) on Saturday issued a rare National Terrorism Advisory System (NTAS) alert warning about possible Iranian terror and cyber campaigns in retaliation for the US drone strike that killed Iranian military commander Maj. Gen. Qassim Suleimani at Baghdad airport last Friday. Suleimani was the

On New Year’s Eve, global currency exchange giant Travelex experienced a “software virus” infection that “compromised some of its services”, as a result of which the company’s websites have been unavailable for almost a week now. The company says it has taken down all of its systems “as a precautionary