21 Apr 2020

Bitcoin Stealers Hide in 700+ Ruby Developer Libraries

Security researchers have identified roughly 760 malicious libraries uploaded by cybercriminals to RubyGems, which contain open source components that are commonly used as building blocks by software developers. The malicious libraries steal Bitcoin, and have been identified in the Ruby programming language codebase. Threat analysts at ReversingLabs stated that cybercriminals

Read More
21 Apr 2020

267 million Facebook profiles sold for $600 on the dark web

Security researcher Bob Diachenko discovered 267 million Facebook profiles being sold on dark web sites and hacker forums for over $600 apiece. Diachenko uncovered the stolen account credentials for sale last month. However, none of the records include passwords, instead containing information that could allow attackers to conduct spear-phishing or

Read More
20 Apr 2020

GitHub Shares Details on Six Chrome Vulnerabilities

GitHub has released new information on six vulnerabilities that were uncovered by one of its security researchers. The vulnerabilities are in the WebAudio component of Chrome. The vulnerabilities were reported to Google by GitHub Security Lab in February and March. The security researcher identified several Chrome sandbox escape vulnerabilities, and

Read More
20 Apr 2020

Zoom Bombing Attack Hits U.S. Government Meeting

According to an internal letter released by the government, a recent US House Oversight Committee meeting was the victim of a Zoom-bombing attack. The committee meeting was disrupted at least three times by uninvited individuals. The incident was disclosed in an internal letter from two representatives, Jim Jordan and Carolyn

Read More
20 Apr 2020

Coronavirus Dark Web Scams: From infected blood to ventilators

Due to the ongoing COVID-19 pandemic, the dark web has been riddled with various postings related to the virus. As healthcare organizations and workers have been searching for necessary protective goods and medical equipment as well as cures for the deadly virus, scammers on the dark web have been promoting

Read More
20 Apr 2020

COVID-Themed Phishing Messages Fill Phishing Filters on Gmail

Google has stated that nearly a fifth of all phishing email messages that have been identified on its Gmail platform feature COVID-19 as part of their content, using the pandemic to lure victims into malicious links and attachments. The giant stated that last week, they saw roughly 18 million email

Read More
17 Apr 2020

Zoom Revamps Bug Bounty Program

On Wednesday, the video conferencing platform Zoom announced that it is re-launching its bug bounty program in collaboration with Luta Security. The company aims to make significant changes to the program amid security alerts regarding the platform’s cybersecurity practices and safety. Researchers have reported finding potentially serious vulnerabilities in the

Read More
17 Apr 2020

Alleged Zoom Zero-Days for Windows, MacOS for Sale, Report

New Zoom zero-days have allegedly been discovered for sale, effecting Windows and macOS. Hackers have claimed that they discovered two zero-day vulnerabilities for the Zoom video conferencing platform, being sold online for $500,000. The zero-days may allow threat actors to spy on private video conferences hosted through Zoom and exploit

Read More
16 Apr 2020

US issues guidance on North Korean hackers, offers $5M reward

The US government issued a statement in which they offered guidance on North Korean hacking activity. The document, which is a joint advisory, was published by several government entities, including the US Department of State, Treasury, Homeland Security, and the FBI. The report estimates that last year, North Korean hackers

Read More
16 Apr 2020

PPE, COVID-19 Medical Supplies Targeted by BEC Scams

The FBI has confirmed that agencies aiming to but items like ventilators have unknowingly been conned into a BEC scam in which they transfer funds to threat actors rather than legitimate organizations. There has been a shortage of personal protective equipment (PPE) in American hospitals across the country, and the

Read More