14 Oct 2019

Planes, gates, and bags: How hackers can hijack your local airport

New research by Pen Test Partners sheds light on the many ways airport security systems can be compromised by hackers. Potential avenues for attack include: Crew passes: threat actors can use various techniques to steal or copy RF cards that provide airport personnel with access to restricted areas. Building management

Read More
14 Oct 2019

FIN7 Hackers Load New RAT Malware Into ATM Maker’s Software

New research by FireEye’s Mandiant group shows that the infamous FIN7 cybercrime group is using new hacking tools in order to target ATMs produced by NCR Corporation. The new tools include a malware dropper called BOOSTWRITE that is designed to deliver multiple payloads. The malware delivered by BOOSTWRITE consists of

Read More
14 Oct 2019

Iran-Linked ‘Charming Kitten’ Touts New Spearphishing Tactics

Iranian state-backed hacking group APT 25 (also known as Charming Kitten, Phosphorus, Ajax Security Team, NewsBeef and Newscaster) has updated its attack techniques to carry out a spearphishing campaign targeting US President Donald Trump’s re-election campaign, according to recent research[pdf] by ClearSky Cyber Security. The report states that the new attack

Read More
11 Oct 2019

Imperva blames data breach on stolen AWS API key

Last month, cybersecurity firm Imperva announced that the data of a “subset of customers” of Imperva’s Cloud Web Application Firewall was exposed in a “security incident” in September 2017. This week, the company published an analysis of the breach, which shows that the incident was made possible by the company

Read More
11 Oct 2019

Escort forums in Italy and the Netherlands hacked, user data put up for sale

Two European web forums serving sex workers and their customers have been breached by a Bulgarian threat actor who is now selling 330,000 stolen user records on underground marketplaces. The hacker, who uses the moniker InstaKilla, exploited a recently disclosed critical vulnerability in vBulletin in order to steal 300,000 records

Read More
08 Oct 2019

Muhstik Ransomware Victim Hacks Back, Releases Decryption Keys

A cybercrime victim whose QNAP network-attacked storage (NAS) device was recently infected with Muhstik ransomware decided to try and hack back the attackers, which was a rather successful effort: the victim managed to obtain nearly 3,000 decryption keys for Muhstik ransomware victims, which he released for free. Muhstik ransomware has

Read More
07 Oct 2019

Iran Caught Targeting US Presidential Campaign Accounts

Iranian hackers recently targeted a US presidential campaign as well as various government officials (including former officials) and journalists, an investigation by Microsoft found. Between August and September of this year, a total of 241 user accounts were attacked by the infamous Iranian state-backed hacking group known as APT 25,

Read More
07 Oct 2019

‘The Cyberthreat Handbook’ Released, Documents ‘Who’s Who’ of Attackers

A new report by Thales and Verint provides an extensive overview of the major threat groups operating in cyberspace. The study looks at the campaigns of around 60 hacking groups over a one-year period. About 50% of the actors under scrutiny were funded by governments and worked to steal confidential

Read More
04 Oct 2019

Cyber-Spy Group Active Since 2013 Now Tied to Chinese State Actor

Researchers with Palo Alto Networks say that a hacking group dubbed “PKPLUG” was responsible for a number of previously unattributed cyber-espionage campaigns targeting people in various Asian countries. PKPLUG has been active since at least 2013 and has targeted individuals in Mongolia, Myanmar, Tibet, Vietnam, Indonesia and Taiwan as well as

Read More
04 Oct 2019

New Android Cyberwarfare Attack Exposed—And It’s Hiding A Devious Twist

Earlier this week, the New York Times covered what it referred to as an “attack on Egyptian journalists, academics, lawyers, opposition politicians and human rights activists.” The report was based on recent research by Check Point, which in turn followed a report by Amnesty from March of this year. Check

Read More