New research by Pen Test Partners sheds light on the many ways airport security systems can be compromised by hackers. Potential avenues for attack include: Crew passes: threat actors can use various techniques to steal or copy RF cards that provide airport personnel with access to restricted areas. Building management

New research by FireEye’s Mandiant group shows that the infamous FIN7 cybercrime group is using new hacking tools in order to target ATMs produced by NCR Corporation. The new tools include a malware dropper called BOOSTWRITE that is designed to deliver multiple payloads. The malware delivered by BOOSTWRITE consists of

Iranian state-backed hacking group APT 25 (also known as Charming Kitten, Phosphorus, Ajax Security Team, NewsBeef and Newscaster) has updated its attack techniques to carry out a spearphishing campaign targeting US President Donald Trump’s re-election campaign, according to recent research[pdf] by ClearSky Cyber Security. The report states that the new attack

Last month, cybersecurity firm Imperva announced that the data of a “subset of customers” of Imperva’s Cloud Web Application Firewall was exposed in a “security incident” in September 2017. This week, the company published an analysis of the breach, which shows that the incident was made possible by the company

Two European web forums serving sex workers and their customers have been breached by a Bulgarian threat actor who is now selling 330,000 stolen user records on underground marketplaces. The hacker, who uses the moniker InstaKilla, exploited a recently disclosed critical vulnerability in vBulletin in order to steal 300,000 records

A cybercrime victim whose QNAP network-attacked storage (NAS) device was recently infected with Muhstik ransomware decided to try and hack back the attackers, which was a rather successful effort: the victim managed to obtain nearly 3,000 decryption keys for Muhstik ransomware victims, which he released for free. Muhstik ransomware has

Iranian hackers recently targeted a US presidential campaign as well as various government officials (including former officials) and journalists, an investigation by Microsoft found. Between August and September of this year, a total of 241 user accounts were attacked by the infamous Iranian state-backed hacking group known as APT 25,

A new report by Thales and Verint provides an extensive overview of the major threat groups operating in cyberspace. The study looks at the campaigns of around 60 hacking groups over a one-year period. About 50% of the actors under scrutiny were funded by governments and worked to steal confidential

Researchers with Palo Alto Networks say that a hacking group dubbed “PKPLUG” was responsible for a number of previously unattributed cyber-espionage campaigns targeting people in various Asian countries. PKPLUG has been active since at least 2013 and has targeted individuals in Mongolia, Myanmar, Tibet, Vietnam, Indonesia and Taiwan as well as

Earlier this week, the New York Times covered what it referred to as an “attack on Egyptian journalists, academics, lawyers, opposition politicians and human rights activists.” The report was based on recent research by Check Point, which in turn followed a report by Amnesty from March of this year. Check