10 Jan 2019

This Trojan attack adds a backdoor to your Windows PC to steal data

Researchers at cybersecurity firm Proofpoint have discovered a new attack campaign by TA505, a notorious cybercrime group responsible for various major attacks in recent years, including the Locky ransomware campaign. The campaign combines two types of malware, ServHelper and FlawedGrace. ServHelper is the newest of the two, being discovered only in November of last year. It installs

Read More
09 Jan 2019

This old ransomware is using an unpleasant new trick to try and make you pay up

Researchers at cyber security firm Coveware have uncovered a new ransomware campaign in which threat actors try to manipulate victims into paying ransom to regain access to their files, by claiming the money will be donated to charity. The ransomware used in the campaign is CryptoMix, a relatively unknown file-encrypting

Read More
09 Jan 2019

New tool automates phishing attacks that bypass 2FA

At the start of this year, Polish researcher Piotr Duszyński published Modlishka, a new penetration testing tool that makes the automation of phishing attacks easier than ever before, and even allows attackers to bypass two-factor authentication (2FA) for targeted accounts. Modlishka is considered a reverse proxy that sits between a

Read More
09 Jan 2019

Disgruntled Man Behind German Cyber-Attack

According to investigators at the German Federal Criminal Police Office (BKA), a 20-year-old man has admitted that he was behind the recent data breach involving the publication of personal data of hundreds of German politicians and public figures. The BKA stated that they had interrogated the suspect, who then admitted “that

Read More
08 Jan 2019

National security center launches program to help US firms guard against foreign hackers

The National Counterintelligence and Security Center (NCSC) has launched an initiative to assist U.S. businesses in protecting themselves against foreign nation-state hackers. As part of the program, the NCSC is providing companies with information on how to defend against various cyber attacks, including supply chain attacks, spear-phishing and cyber espionage.

Read More
08 Jan 2019

GandCrab Operators Use Vidar Infostealer as a Forerunner

In a disturbing two-stage malvertising attack campaign that highlights the increasingly complex nature of cyber attacks, the threat actors behind the infamous GandCrab ransomware have added Vidar, an information-stealing Trojan to their arsenal. In the first stage of the attack, the Fallout Exploit Kit is used to distribute Vidar. After

Read More
08 Jan 2019

New hardware-agnostic side-channel attack works against Windows and Linux

Researchers have discovered a new type of side-channel attack that targets the operating system rather than design flaws in CPUs or other hardware components, as was the case with previous attacks of this type. The attack is therefore consider “hardware-agnostic”. So far it has been found to be effective against

Read More
08 Jan 2019

Ransomware Corrupts 24,000 Patient Records of California Specialist

Three recent notifications of major cyber incidents in the healthcare sector, highlight the massive cybersecurity issues affecting the industry: The Podiatric Offices of Bobby Yee experienced a ransomware attack in which the medical records of up to 24,000 patients were corrupted and perhaps altered as well. Bankers Life, an associate

Read More
24 Sep 2018

Extradited Romanian Woman Pleads Guilty in Connection to Cyberattack on DC Security Cameras

A Romanian woman has pleaded guilty in connection with a ransomware attack against over 125 surveillance cameras in Washington DC ahead of the 2017 presidential inauguration. Demanding a payment of $60,800 in Bitcoin for restored access to the machines, the hackers were foiled by police IT department’s ability to disconnect

Read More
18 Sep 2018

US agencies see alliance between North Korean, Chinese hackers

“At a time when Washington is cautiously hopeful of a breakthrough in its long-troubled relations with Pyongyang, senior US officials are making strong allegations about the regime’s cyber crimes.In early September, The US Justice Department published a criminal complaint against a North Korean citizen for conspiracy to ‘conduct multiple destructive

Read More