20 May 2020

Bluetooth Bugs Allow Impersonation Attacks on Legions of Devices

According to security researchers, unpatched security bugs remain in Bluetooth chips from companies like Apple, Intel, Qualcomm, Samsung, and others, allowing for Bluetooth Impersonation Attacks (BIAS). Researchers found the vulnerabilities in Bluetooth Classic, allowing attackers to spoof paired devices, posing as a trusted endpoint. This then allows the attackers to

Read More
20 May 2020

Microsoft warns of ‘massive’ phishing attack pushing legit RAT

Microsoft’s Security Intelligence team has recently warned users of a phishing campaign with a COVID-19 theme that installs NetSupport Manager remote, an administration tool. The campaign is spreading the tool through various malicious Excel attachments on emails pretending to be from the Johns Hopkins Center, providing information on the number

Read More
19 May 2020

Hacker sells 129 million sensitive records of Russian car owners

Security researchers have uncovered a dark web forum database with 129 million records of Russian car owners for sale. The seller has leaked some data for potential buyers, verifying the data’s authenticity. Local media has reported that no details on the car owners are available in the public data set,

Read More
19 May 2020

Hundreds of thousands of QNAP devices vulnerable to remote takeover attacks

On Tuesday, a Taiwanese security researcher published details about vulnerabilities within the firmware of Photo Station, a photo album app that is installed with all QNAP network-attached storage (NAS) devices. The researcher, Henry Huang, stated that the Photo Station app is currently installed on 80% of QNAP NAS systems or

Read More
19 May 2020

EasyJet hack leaves 9 million customers’ details exposed

On Tuesday, European airline EasyJet announced that it was targeted by a sophisticated cyberattack that left its systems offline. The airline stated that since the attack, the unauthorized access to its systems has been closed off. However, an investigation into the attack revealed that travel details and email addresses of

Read More
18 May 2020

RATicate Group Hits Industrial Firms With Revolving Payloads

According to researchers, a new threat group called RATicate is targeting industrial companies with revolving payloads and is behind several malspam attacks against companies such as LokiBot, Agent Tesla, Netwire, FormBook, and BetaBot. Researchers have attributed at least six separate campaigns to the group, with the first starting in November

Read More
18 May 2020

FBI warns of ProLock ransomware decryptor not working properly

The FBI has issued an alert warning the public that the ProLock ransomware decryptor does not work to secure data in the event of a ransomware attack. Earlier this month, the FBI released a flash alert informing organizations of the new threat actor, stating that it targets US healthcare, government,

Read More
13 May 2020

Healthcare giant Magellan Health hit by ransomware attack

Yesterday, Magellan Health Inc. disclosed that it was the victim of a ransomware attack occurring on April 11, which resulted in theft of personal information from a corporate server. Magellan Health is a Fortune 500 for-profit managed health care and insurance firm whose customers include other managed care organizations, labor

Read More
13 May 2020

Coronavirus-related cyberattacks surge to 192,000 in one week

Cyberattackers have been capitalizing on the ongoing pandemic, using it to lure new victims, often through enticing malicious links advertising fraudulent vaccine or treatment information. They have also been creating phishing emails, suspicious or malicious websites, infected downloads such as apps and files, and other content that aim to trap

Read More
13 May 2020

Hackers hit A-list law firm of Lady Gaga, Drake and Madonna

Grubman Shire Meiselas & Sacks, a law firm with A-list clients like Rob Stewart, Madonna, Lil Nas X, and Robert de Niro, has suffered from a cyberattack that has taken the firm’s website down. The attackers claim to have stolen 756 gigabytes of data, including contracts and personal emails from

Read More