10 Jan 2022

Indian Patchwork hacking group infects itself with remote access Trojan

A group named Patchwork by Malwarebytes has been exposed after it accidentally infected its own development environment with a remote access Trojan (RAT). The group has been traced back to India and is also known by the names Hangover Group, Dropping Elephant, Chinastrats, and Monsoon. The group has been active

Read More
10 Jan 2022

Cyber criminals are mailing out USB drives that install ransomware

According to the FBI, a cybercrime group has been attempting to compromise devices via thumb drives. The malicious group has been mailing out USB thumb drives, hoping that recipients will fall for the trick and plug them into their devices, effectively installing ransomware on their networks. The drives reportedly contain

Read More
06 Jan 2022

NY AG notifies 17 companies of breaches, says 1.1 million accounts compromised in attacks

The New York Attorney General Letitia James has notified seventeen different companies of cyberattacks that compromised user information. The attacks were discovered during an investigation into credential stuffing, and more than one million customer accounts were compromised. James reported that the attacks were previously undetected. The businesses included well-known online

Read More
05 Jan 2022

Data Skimmer Hits 100+ Sotheby’s Real-Estate Websites

A data-skimming attack has hit over 100 Sotheby’s real estate websites in a supply chain attack abusing a weaponized cloud video player. According to Palo Alto Networks’ Unit 42 division, all of the compromised sites belonged to Sotheby’s and no other companies were impacted. The sites imported the same video

Read More
04 Jan 2022

Portugal Media Giant Impresa Crippled by Ransomware Attack

Impresa, a Portuguese media giant that owns the largest television station and newspaper in Portugal, was crippled by a ransomware attack in the first hours of 2022. The websites of the company and the Expresso newspaper, as well as all of its TV channels, remained offline on Tuesday due to

Read More
04 Jan 2022

UK’s Defence Academy hit by cyberattack which caused ‘significant’ damage

The UK’s Defence Academy reportedly suffered from a cyberattack last year that inflicted significant damage to the institution, says a retired high-ranking officer. Air Marshal Edward Stringer stated that the attack was likely launched by a hostile foreign state such as Russia or China. The breach was detected in March

Read More
03 Jan 2022

APT ‘Aquatic Panda’ Targets Universities with Log4Shell Exploit Tools

Researchers at CrowdStrike recently released a report detailing an attempt by the advanced persistent threat group Aquatic Panda to steal industrial intelligence and military secrets. Aquatic Panda targeted an unknown academic institution in the attack, which was successfully thwarted by CrowdStrike. The cybercriminals are the latest group to exploit the

Read More
27 Dec 2021

Hellmann Warns Customers They Could Face Malicious Communications Following Attack

Hellmann Worldwide Logistics, a German logistics provider, has warned its customers of social engineering attacks after a ransomware attack compromised some of the company’s systems earlier this month. As a result of the attack, Hellmann was forced to take its IT systems temporarily offline on December 9. Hellmann has confirmed

Read More
16 Dec 2021

SAP Kicks Log4Shell Vulnerability Out of 20 Apps

SAP has been working around the clock to patch apps vulnerable to the Log4Shell flaw, releasing 21 fixes in its Patch Tuesday update. SAP has identified 32 different apps that have been affected by the critical vulnerability, which lies in the Apache Log4j Java-based jogging library that has been under

Read More
16 Dec 2021

Suspected Iranian hackers target airline with new backdoor

On Wednesday, cybersecurity researchers at IBM’s Security X-Force confirmed that an Asian airline was the target of a cyberattack conducted by a suspected state-sponsored Iranian threat group. The attack likely began in October 2019 and lasted until 2021. The attack leveraged a never-before-seen backdoor, according to researchers. Researchers suspect the

Read More