25 Feb 2021

Microsoft Lures Populate Half of Credential-Swiping Phishing Emails

According to a Tuesday report by Cofense, cybercriminals are increasingly using Microsoft services such as Outlook, Teams, and Office to launch themed phishing attacks and steal credentials from their targets. According to Cofense, almost half of phishing attacks in 2020 aimed to steal Microsoft credentials using lures related to the

Read More
25 Feb 2021

New APT Group Targets Airline Industry & Immigration

According to researchers at Malwarebytes,  a new APT group has been discovered. The group has been named LazyScript and bears some similarities to other known Middle Eastern threat groups, however, due to techniques and tools used, Malwarebytes has designated them to be a distinct operation separate from other known groups.

Read More
24 Feb 2021

Finnish IT Giant Hit with Ransomware Cyberattack

Major Finnish IT provider TietoEVRY has been hit with a ransomware attack that has forced some services offline. The attacks have disrupted company operations while it is attempting to mitigate any further risks and ensure that all systems are restored. The ransomware attack created technical problems with several services that

Read More
23 Feb 2021

10K Microsoft Email Users Hit in FedEx Phishing Attack

Microsoft users are receiving phishing emails fraudulently claiming to be from mail couriers FedEx and DHL Express. However, malicious links within the message steal credentials from victims. The recent attacks targeted at least 10,000 Microsoft users, according to the tech giant. The scams used phishing pages hosted on legitimate domains

Read More
23 Feb 2021

TDoS Attacks Take Aim at Emergency First-Responder Services

The FBI has warned that telephone denial-of-service attacks (TDoS) are targeting emergency dispatch centers, threatening their operations such as calling for emergency services like police, firefighters, or EMTs. The attacks affect the availability and readiness of these call centers, according to the FBI. A TDoS attack floods the recipient with

Read More
18 Feb 2021

Cyber attacks hit two French hospitals in one week

Two French hospitals have been hit by ransomware attacks in less than a week, forcing the healthcare locations to transfer patients to other facilities. According to local media, the attacks did not impact the hospitals’ ability to care for Covid-19 patients or virus vaccinations. The Villefranche-sur-Saône hospitals complex was one

Read More
17 Feb 2021

Unpatched Android App with 1 Billion Downloads Threatens Spying, Malware

According to new research, the SHAREit application opens up Android users to malware and spyware. The app allows for remote attackers to execute malicious code through three vulnerabilities that remain unpatched. The app’s developers were allegedly informed of the flaws three months ago, and the lack of a fix represents

Read More
15 Feb 2021

Singtel Suffers Zero-Day Cyberattack, Damage Unknown

Singtel, a Tier 1 telecom giant, has suffered from a cyberattack in which attackers leveraged a zero-day vulnerability within the Accellion legacy file-transfer platform. The telecom carrier is used throughout Asia and owns the Australian telecommunications agency Optus. Singtel isn’t the only organization affected by this third-party bug, another Australian

Read More
10 Feb 2021

Android Devices Hunted by LodaRAT Windows Malware

The LodaRAT has been found targeting Android devices in a new campaign. The malware has historically targeted Windows devices, however, is now being distributed in an ongoing campaign that seeks to spy on victims. The LodaRAT has also been updated, with the more aggressive version spotted by researchers in a

Read More
26 Jan 2021

Google reveals North Korean-backed campaign targeting security researchers

A new ongoing campaign targeting security researchers has been uncovered by Google’s Threat Analysis Group. The attackers are going to great lengths to gain the victims’ trust, posing as researchers or students themselves. The campaign consists of sophisticated social engineering techniques to persuade the security researcher to open a Microsoft

Read More