06 Nov 2019

New Megacortex Ransomware Changes Windows Passwords, Threatens to Publish Data

MalwareHunterTeam has detected a new sample of the MegaCortex ransomware strain that is typically distributed via Trojans like Emotet in targeted campaigns. In addition to encrypting files on infected machines, the new version of the malware changes the password of the active user and warns the user that their personal

Read More
06 Nov 2019

Ransomware attack delays government services in Nunavut, Canada

Nunavut, Canada’s northernmost territory, suffered a ransomware attack on Saturday, which impacted most of the local government’s network and Internet-based services. The government believes it will eventually be able to recover all systems from backup, and is currently prioritizing the restoration of systems used for health, education, justice, finance and

Read More
06 Nov 2019

Trump, Putin and Politics Name-Dropped to Peddle Malware

A new Cisco Talos report shows that threat actors are trying to take advantage of the strong opinions many people hold regarding prominent political figures by distributing various types of malware using the names of people like US President Donald Trump, Russian President Vladimir Putin and North Korean leader Kim

Read More
06 Nov 2019

Brooklyn Hospital Loses Patient Data In Ransomware Attack

In July of this year, the Brooklyn Hospital Center in New York suffered a ransomware attack that has resulted in the permanent loss of certain patient data. After the malware encrypted the hospital’s patient files, the hospital launched an investigation into the incident and tried to recover the data, which

Read More
05 Nov 2019

Ransomware hits Spanish companies sparking WannaCry panic

On Tuesday, two Spanish companies suffered ransomware attacks forcing them to shut down their networks. IT consultancy firm Everis was hit by the BitPaymer ransomware strain, which infected multiple branches because it was able to spread via the company’s internal network. The other victim was Cadena SER, Spain’s largest radio

Read More
05 Nov 2019

Europol: Spear phishing the most prevalent cyber threat affecting orgs across the EU

A new report[pdf] by Europol identifies spear phishing, i.e. targeted phishing, as the top threat to organizations in European Union (EU) member states. According to the study, spear phishing is the most common attack vector used by cybercriminals to compromise organizations. Steven Wilson of Europol’s European Cybercrime Centre added that

Read More
05 Nov 2019

Attack on Indian Ed Tech Firm Exposes 687K Users

In July of this year, threat actors breached Indian educational technology firm Vedantu and obtained access to the private data of around 687,000 users, breach notification site Have I Been Pwned? has discovered. According to the website, the exposed data includes “email and IP address, names, phone numbers, genders and

Read More
05 Nov 2019

Critical Remote Code Execution Flaw Found in Open Source rConfig Utility

A security researcher has discovered two remote code execution vulnerabilities, one of which is deemed critical, in the open-source network configuration tool rConfig that thousands of network engineers are using to snapshots of more than 7 million network devices. The critical flaw, tracked as CVE-2019-16662, makes it possible for a

Read More
04 Nov 2019

The First BlueKeep Mass Hacking Is Finally Here—but Don’t Panic

Threat actors are actively exploiting the critical BlueKeep flaw that impacts Remote Desktop Protocol (RDP) implementations on unpatched older Windows operating systems. Microsoft and other companies have warned that the flaw, tracked as CVE-2019-0708, is very dangerous because it could be used by attackers to carry out a massive attack

Read More
04 Nov 2019

Chrome Zero-Day Vulnerability Exploited in Korea-Linked Attacks

Threat actors recently took advantage of a zero-day flaw in the Google Chrome browser in order to serve malware to users via a compromised website, a report by Kaspersky shows. The vulnerability, tracked as CVE-2019-13720, affected Chrome for Windows, macOS and Linux. Google released a patch for the flaw and

Read More