17 Dec 2019

Ransomware ‘Crisis’ in US Schools: More Than 1,000 Hit So Far in 2019

Ransomware attacks have been targeting US school systems with 226 schools hit since October, compromising 11 different school districts in major cities such as New Orleans and Pensacola hit earlier this month. Data published by security firm Armor shows that a total of 72 US school districts have suffered from

Read More
06 Dec 2019

VPN Flaw Allows Criminal Access to Everything on Victims’ Computers

A VPN vulnerability in the Aviatrix VPN client has been patched, but previously gave an attacker unlimited access to the targeted device. Aviatrix VPN client is used by large US organizations, notably NASA and Shell. All versions of the VPN have been patched and are now available for download without

Read More
05 Dec 2019

‘Ultimate’ MiTM Attack Steals $1M from Israeli Startup

Researchers at Check Point Software uncovered an attack that used a sophisticated spoofing campaign to trick a Chinese VC firm and steal money from an emerging Israeli business. The man-in-the-middle campaign effectively intercepted a $1 million wire transfer from a Chinese venture capital firm that was intended for the Israeli

Read More
04 Dec 2019

TrickBot Expands in Japan Ahead of the Holidays

IBM X-Force data indicated that Trickbot banking Trojan is undergoing code modifications and global attacks are increasingly targeting Japan ahead of the 2020 holidays. IBM reported that Trickbot is currently the most active and widely used baking Trojan. In August, Trickbot was modified to target mobile devices and is the

Read More
03 Dec 2019

Crooks are exploiting unpatched Android flaw to drain users’ bank accounts

Hackers are taking advantage of StrandHogg, a recently publicized Android vulnerability, to steal banking credentials and empty accounts. European security company Wultra warns that several banks in the Czech Republic have reported money disappearing from customer accounts. All versions of Android are affected by the vulnerability, as well as all

Read More
03 Dec 2019

Report: ‘Smishing,’ Deepfakes to Continue to Rise in 2020

Experian, an American credit reporting company, published a 2020 data breach industry forecast that stated “smishing” or text-based phishing, would be the next danger to consumers and agencies. Following smishing is drones that steal customer data, disruptive deepfakes, hacktivism, and identity theft through mobile payment systems. The report claims that

Read More
03 Dec 2019

DHS to Require Federal Agencies to Set Vulnerability Disclosure Policies

Under the Department of Homeland Security, the Cybersecurity and Infrastructure Security Agency (CISA) published a draft document that mandates vulnerability disclosure and outlines strategies for handling weaknesses. The CISA raised concerns that most civilian agencies’ lack of disclosure policies leads to confusion, and with the implementation of a requires vulnerability

Read More
03 Dec 2019

Report: APT gang increased cyberattacks on businesses in Q3

Positive Technologies published a Cybersecurity Threatscape Q3 2019 update that found targeted attacks rose to 65% in Q3. Positive technologies also established that 81% of malware infections of corporate infrastructure originated with a phishing message. The targeted attacks in Q3 were mostly conducted by APT groups that pretend to represent

Read More
02 Dec 2019

5G hackers: These six groups will try to break into the networks of tomorrow

European security agency Enisa has identified the groups it believes are the biggest threat to 5G networks. Enisa warns that threats to telecoms infrastructure will increase with the arrival of 5G and next-generation mobile connectivity. 5G will present a wide array of risks, from automated factories to connected cars, attracting

Read More
27 Nov 2019

Black Friday Cyberattacks Just Soared 275%: Here’s What You Do Now

A new Check Point report warns that retail phishing URLs have surged by 275% this month. Last year the researchers also noted a rise in phishing attacks in the period leading up to Black Friday and Cyber Monday, but this seasonal spike is far bigger this year. Cybercriminals use a

Read More