Recently, there have been numerous reports of cybercriminals and hacking groups taking advantage of the COVID-19 pandemic. IBM emerged with new information that stated that in the past two weeks, coronavirus themed spam has increased by 14,000%. The report by IBM’s X-Force reveals how much spam has been generated, taking
APT41, a Chinese threat group that is responsible for dozens of destructive cyberattacks, has been exploiting vulnerabilities in Citrix NetScaler/ADC, Cisco routers and Zoho ManageEngine Desktop Central as part of a new espionage campaign. However, researchers have not yet determined if the campaign is targeting specific organizations or what these
Malwarebytes Labs researchers have discovered a cyberattack on the Tupperware website, targeting customers payment card information via a digital credit card skimmer disguised inside an image file. Researchers found the malicious code when an anomaly in the iframe container was caught, prompting the researchers to look closer at the code.
The Department of Justice has been cracking down on malicious websites using the current pandemic to lure victims. Most recently, the DoJ has taken down a website that claimed to give out coronavirus vaccine kits but rather stole victims’ payment card and personal information. This shutdown marks the first federal
Coronavirus themed emails have been targeting victims less and right, feeding off of global fear. The campaigns use messages and software as well, to trick people into downloading malware and other malicious programs. Kristin Del Rosso and other researchers at Lookout, a cybersecurity company, have uncovered a unique coronavirus attack
The US Attorney General, William Burr, recently urged attorneys in the DoJ to pay close attention to cybercriminals who are capitalizing on coronavirus fears to spread malware and commit fraud. The memo consists of Barr warning attorneys that it is essential to remain vigilant in detecting and prosecuting wrongdoing as
In February, the Department of Justice’s Cybersecurity Unit published a document that focuses on the risks practitioners face when gathering intelligence from online sources like the Darknet and what the ramifications of certain actions are when performing intelligence collection. The publication highlights several hypothetical situations in which the practitioner may face legal consequences for missteps when interacting with Darknet sellers and obtaining information from these forums.
In late February, the research firm Emsisoft alerted Forbes journalists that they believed that SpaceX and Tesla had been hacked due to the discovery of published non-disclosure agreement documents related to the companies by a cybercrime group. Cybercriminals targeted a precision parts manufacturer that supplies automotive and aeronautics parts to
Google recently introduced a seemingly subtle change in the newest version of its Chome web browser, version 80. The feature makes the credentials that users save in Chrome’s password manager more secure, and it has already generated a large impact on the underground criminal enterprise. The Genesis Store has operated
The Reading Municipal Light Department, a Massachusetts power station, was hit by ransomware over the weekend, causing its website to be down, however, the attack did not interrupt electricity services and RMLD’s grid remains secure. The company is refusing to meet the attackers’ demands of a ransom payment. The cybercriminals