28 Jan 2019

The Pentagon’s Cybersecurity Is Falling Behind

The latest annual report by the U.S. Defense Department’s test and evaluation office warns that while the cyberdefense capabilities of the U.S. military are advancing, “the rate of these improvements is not outpacing the growing capabilities of potential adversaries who continue to find new vulnerabilities and techniques to counter fixes.” In

Read More
28 Jan 2019

Exclusive: Ukraine says it sees surge in cyber attacks targeting election

Ukraine claims that threat actors working for the Russian government are carrying out cyberattacks on electoral servers as well as the computers of election officials in an attempt to interfere with the upcoming Ukrainian presidential election that will take place in March of this year. According to the head of the

Read More
28 Jan 2019

Ursnif Trojan is back with fileless persistence

Carbon Black researchers have uncovered a sophisticated malware campaign involving the infamous Ursnif Trojan, also known as Dreambot, and the popular GandCrab ransomware. In the first stage of the campaign, threat actors distribute spam emails containing Microsoft Word documents that have been corrupted with malicious macro scripts. The macros inside

Read More
28 Jan 2019

Dailymotion Resets Passwords After Credential Stuffing Attack

Credential stuffing attacks are on the rise. The latest victim is video platform Dailymotion, which has forced users to reset their passwords after it discovered that threat actors were attempting to access user accounts using stolen login credentials for other websites. The credential stuffing attacks began on January 19 and

Read More
25 Jan 2019

Collateral Damage: When Cyberwarfare Targets Civilian Data

As acts of cyberwar by nation-state threat actors are becoming increasingly common and disruptive, the goals of attacking parties include damaging critical infrastructure; stealing military data and technology; spreading disinformation; and, increasingly, stealing civilian data. According to Terry Ray, Chief Technology Officer at Imperva, companies, educational institutions, medial instantiations and other

Read More
25 Jan 2019

Cloud Customers Faced 681M Cyberattacks in 2018

According to a new report by Armor, a total of 681 million cyberattacks targeted cloud customers in 2018. The most popular attack techniques employed by threat actors were exploiting software flaws; accessing accounts through by brute-forcing or through stolen login data; targeting poorly secured devices that are part of the

Read More
25 Jan 2019

This malware uses debt to prey on banking victims

Security researchers with Palo Alto Networks have been tracking a malware campaign involving the distrubution of the Redaman banking Trojan through widespread malspam campaigns with varying subject lines relating to debt collection and other financial obligations. The campaign mainly targets Russian speakers, although emails containing the Trojan as an attachment have been

Read More
24 Jan 2019

Cyberattacks fueled by geopolitical tension are increasing

A new report by Carbon Black indicates that geopolitical tensions between democratic western countries and authoritarian states such as Russia, China, North Korea, and Iran, lie at the root of an increasing number of cyberattacks. For instance, almost 50% of incident response investigations undertaken for Carbon Black customers in 2018 were

Read More
24 Jan 2019

New Anatova Ransomware Supports Modules for Extra Functionality

Security researchers with McAfee have discovered a new ransomware strain dubbed Anatova. The ransomware was found disguised as a game in a peer-to-peer network. Anatova will encrypt files on infected computers and subsequently demand a ransom of around $700 in DASH cryptocurrency (10 coins). The campaign is targeting users around the globe,

Read More
23 Jan 2019

Cybercriminals increasingly taking aim at businesses

A new report by Malwarebytes underlines how cybercriminals have shifted their focus in 2018 from campaigns targeting individual users to those focusing exclusively on high-value business targets. Endpoint attacks have also increased. Trojans were the most prevalent type of malware targeting companies, with the sophisticated Emotet and Trickbot Trojans as prime

Read More