09 Jan 2020

Senator unveils bill to stop the US from sharing intel with countries using Huawei 5G

Senator Tom Cotton introduced legislation that seeks to prohibit the United States from sharing intelligence with countries allowing the Chinese company Huawei to operate 5G technologies. The legislation, which was introduced earlier this week, would have a major impact on both the US foreign policy and on Huawei. The legislation

Read More
08 Jan 2020

TikTok Bugs Put Users’ Videos, Personal Data At Risk

Researchers at Check Point Research have discovered vulnerabilities in the popular video-sharing platform TikTok that allow users to spoof SMS messages and exploit an API flaw that can grand access to users’ personal data. However, ByteDance has since patched these flaws. If left un-updated, intruders could still gain access to

Read More
07 Jan 2020

Microsoft Phishing Scam Exploits Iran Cyberattack Scare

An attackers used the possible Iranian cyberattack warning in a phishing scheme that tries to collect Microsoft login credentials. As the threat of a cyberattack coming from Iran escalates, the government has been issuing warnings to citizens and officials. The attacker created an email phishing scam that pretends to be

Read More
07 Jan 2020

Travelex faces ransom demands following NYE malware attack

Travelex services remain offline after they were hit by a malware attack on New Year’s Eve. The network was compromised after a group of unknown cybercriminals launched a ransomware attack, hoping to meet ransom requests. The currency exchange company stated that all of its services had been taken offline to

Read More
07 Jan 2020

Burner phones are an eavesdropping risk for international travelers

In order to limit the risk of exposing sensitive business data while abroad, international business travelers can use of burner phones with a minimal data footprint. However, Michael Campbell of Privoro warns that because those phones are used only for a single trip and contain as little valuable data as

Read More
07 Jan 2020

Widely Known Flaw in Pulse Secure VPN Being Used in Ransomware Attacks

Ransomware actors are actively exploiting a critical flaw in the Pulse Secure VPN service, a security researcher recently discovered. The flaw, tracked as CVE-2019-1150, enables attackers to establish unauthenticated HTTPS connections to enterprise networks using the VPN service. Pulse Secure patched the issue in April of last year, and on

Read More
07 Jan 2020

Magecart Hits Parents and Students via Blue Bear Attack

In October of last year, Magecart actors breached Blue Bear Software, a major e-commerce platform for educational institutions, the vendor’s parent company Active Networks has announced. Magecart is an umbrella term for various criminal groups that attack websites with the aim of injecting them with “skimming” malware designed to steal the

Read More
07 Jan 2020

Microsoft: RDP brute-force attacks last 2-3 days on average

A recent study by Microsoft provides insights into brute-force attacks targeting Remote Desktop Protocol (RDP) implementations in enterprise environments. Over the last few years, RDP brute-forcing has become a popular attack vector in ransomware and other malware campaigns. By analyzing RDP-login events on 45,000 enterprise workstations, Microsoft found that the

Read More
07 Jan 2020

DeathRansom Campaign Linked to Malware Cornucopia

Researchers with FortiGuard have linked DeathRansom malware to a number of info-stealing campaigns, all of which seem to be the work of a Russian-speaking resident of Italy who uses the moniker “scat01.” DeathRansom began as a sort of dark joke, since the malware initially pretended to be file-encrypting ransomware, but

Read More
07 Jan 2020

Bronze President Spies on Asia

New research by Secureworks sheds light on the activity of Bronze President, a cyber espionage group believed to operate out of China. The group uses a combination of custom and publicly available remote access tools to target NGOs as well as political and law enforcement organizations in India, Mongolia, and

Read More