24 Oct 2019

FBI issues warning about e-skimming (Magecart) attacks

A recent article by the Federal Bureau of Investigation (FBI) highlights the threat of e-skimming attacks. This threat is also known as Magecart, an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the payment card information of

Read More
24 Oct 2019

AWS hit by major DDoS attack

Amazon Web Services (AWS) suffered a distributed denial-of-service (DDoS) attack on Wednesday that disrupted the firm’s Router 53 DNS web service for about eight hours on end. Some other services were affected as well. While AWS offers a custom DDoS mitigation service, Amazon’s cloud computing subsidiary admitted that the attack

Read More
24 Oct 2019

Millions downloaded dozens of Android apps on Google Play infected with adware

Once again, millions of Android users have been tricked into downloading malicious applications from the Play Store after threat actors managed to bypass the security checks Google has put in place to bar malware. Researchers with ESET have uncovered 42 malicious apps with a total of more than 8 million

Read More
24 Oct 2019

FTC Issues Guidance On Protecting Against SIM Swap Attacks

The US Federal Trade Commission (FTC) is warning people about SIM swapping attacks that aim to assign the phone number of a victim to a SIM card controlled by the attacker. The threat actor can subsequently use this phone number to obtain access to email and other user accounts of

Read More
23 Oct 2019

FTC bars company from selling “stalking” apps

Software developer Retina-X Studio is no longer allowed to sell three of its apps designed for monitoring employees and children, because the “stalkerware” applications are often used by cybercriminals to spy on users without their consent, the US Federal Trade Commission (FTC) determined on Tuesday. The FTC wants the company

Read More
23 Oct 2019

Magecart 5 Linked to Carbanak Gang

New research by Malwarebytes connects Magecart Group 5, one of the most prominent payment card skimming threat actors, to the notorious Carbanak threat group. Magecart is an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the payment

Read More
22 Oct 2019

Most Effective Phishing Tactic Is to Make People Think They’ve Been Hacked

People are most likely to fall for a phishing scam when it involves a fake message warning that their account has been hacked, a new report by KnowBe4 shows. In phishing simulations and actual phishing campaigns, the email headlines that were most successful in getting victim’s to click on malicious

Read More
22 Oct 2019

Prevention better than cure at preventing young users from getting involved in cybercrime

A new study by the University of Cambridge and the University of Strathclyde suggests that preventive approaches to fighting cybercrime are far more promising than reactionary measures. The researchers found that arresting people who used “booter services” to carry out denial of service (DoS) attacks only resulted in short-terms drops

Read More
22 Oct 2019

Hacker Breached Servers Belonging to Multiple VPN Providers

A threat actor has obtained access to servers belonging to NordVPN, TorGuard, and possibly VikingVPN. NordVPN acknowledged that it suffered a data breach in March of 2018 in which a threat actor obtained private keys used by the firm for securing its web servers as well as VPN configuration files.

Read More
22 Oct 2019

Major German manufacturer still down a week after getting hit by ransomware

German automation technology giant Pilz has kept the systems of its 76 locations across the globe disconnected from the main network for over a week as the result of a ransomware attack, the company has announced. On October 13 the company suffered a BitPaymer ransomware infection that impacted “all servers

Read More