06 Mar 2020

Transit Apps With 600,000 Installs Compromised To Target Military And Political Data

The most recent McAfee Mobile Threat Report has revealed that four Korean transit apps were compromised in what has been deemed a “MalBus” attack. The applications had been available for over five years and had been downloaded hundreds of thousands of times, but have since been removed from the Google

Read More
21 Feb 2020

The US Blames Russia’s GRU for Sweeping Cyberattacks in Georgia

On Thursday, State Department officials released a statement alleging that the GRU, a Russiam military intelligence agency, was responsible for cyberattacks that targeted Georgia in October. The attacks took down or defaced thousands of websites and disrupted the broadcasts of two television stations. Administration officials stated that the US and

Read More
17 Feb 2020

Terrorist Android Malware Exposed: Here Are The Hamas Apps That Hacked Israeli Soldiers

Hamas cyber terrorists have compromised the phones of several hundred Israeli soldiers after infecting them with malware that was embedded in a “honey trap” operation in which Hamas-affiliated actors used profiles of attractive women to entice the Israeli soldiers. The soldiers were then conned into chatting over messaging platforms and

Read More
07 Jan 2020

Travelex faces ransom demands following NYE malware attack

Travelex services remain offline after they were hit by a malware attack on New Year’s Eve. The network was compromised after a group of unknown cybercriminals launched a ransomware attack, hoping to meet ransom requests. The currency exchange company stated that all of its services had been taken offline to

Read More
07 Jan 2020

Widely Known Flaw in Pulse Secure VPN Being Used in Ransomware Attacks

Ransomware actors are actively exploiting a critical flaw in the Pulse Secure VPN service, a security researcher recently discovered. The flaw, tracked as CVE-2019-1150, enables attackers to establish unauthenticated HTTPS connections to enterprise networks using the VPN service. Pulse Secure patched the issue in April of last year, and on

Read More
07 Jan 2020

Magecart Hits Parents and Students via Blue Bear Attack

In October of last year, Magecart actors breached Blue Bear Software, a major e-commerce platform for educational institutions, the vendor’s parent company Active Networks has announced. Magecart is an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the

Read More
07 Jan 2020

Microsoft: RDP brute-force attacks last 2-3 days on average

A recent study by Microsoft provides insights into brute-force attacks targeting Remote Desktop Protocol (RDP) implementations in enterprise environments. Over the last few years, RDP brute-forcing has become a popular attack vector in ransomware and other malware campaigns. By analyzing RDP-login events on 45,000 enterprise workstations, Microsoft found that the

Read More
06 Jan 2020

First Suleimani Attack By ‘Iranian’ Hackers Hits U.S., Exposing ‘Noisy’ New Threat

Over the weekend, threat actors defaced the website of the US Federal Depository Library Program (FDLP), in what could be the first Iranian state-sponsored cyberattack in retaliation for the US drone strike that killed Iranian military commander Maj. Gen. Qassim Suleimani at Baghdad airport last Friday. In the wake of

Read More
06 Jan 2020

DHS: Iran maintains a robust cyber program and can execute cyber-attacks against the US

The US Department of Home Security (DHS) on Saturday issued a rare National Terrorism Advisory System (NTAS) alert warning about possible Iranian terror and cyber campaigns in retaliation for the US drone strike that killed Iranian military commander Maj. Gen. Qassim Suleimani at Baghdad airport last Friday. Suleimani was the

Read More
06 Jan 2020

Travelex Site Still Down After New Year’s Eve Attack

On New Year’s Eve, global currency exchange giant Travelex experienced a “software virus” infection that “compromised some of its services”, as a result of which the company’s websites have been unavailable for almost a week now. The company says it has taken down all of its systems “as a precautionary

Read More