03 Feb 2023

US Man Charged in $110m Crypto Trading Scheme

Avraham Eisenberg, a 27-year-old American man, has been charged with fraudulently obtaining $110 million of cryptocurrency from the crypto exchange Mango Markets. Avraham was reportedly living in Puerto Rico at the time of the scheme. He now faces up to 40 years in jail, according to the Department of Justice.

Read More
03 Feb 2023

UK Car Retailer Arnold Clark Hit by Ransomware

Arnold Clark, a UK-based car retailer, has confirmed that it suffered from a cyberattack that resulted in the exposure of customer data. The Play ransomware group has taken credit for the attack via a message on its Tor-based leak website. Play claims to have obtained gigabytes of sensitive information from

Read More
02 Feb 2023

City of London on High Alert After Ransomware Attack

Ion Cleared Derivatives, a key supplier of trading software to the City of London, has released a statement confirming that it was hit by a suspected ransomware attack. The attack affected some of its services and therefore disrupted activity in the derivatives market. According to the supplier, the incident has

Read More
02 Feb 2023

Ransomware Attack Forces Closure of Nantucket Schools

On Tuesday, schools on the island of Nantucket, Massachusetts, were forced to shut down as a result of a ransomware attack. The closure impacted four establishments serving roughly 1700 students. Nantucket district superintendent Elizabeth Hallett announced the decision via email, stating that the district’s technology department was working to restore

Read More
01 Feb 2023

30k Internet-Exposed QNAP NAS Devices Affected by Recent Vulnerability

Censys, an attack surface management firm, has identified roughly 30,000 internet-exposed QNAP network attacked storage appliances that have been affected by a critical vulnerability. The vulnerability is a critical-severity code injection vulnerability that is described as an SQL injection bug. It allows remote attackers to inject malicious code into vulnerable

Read More
01 Feb 2023

GitHub Confirms Signing Certificates Stolen in Cyber-Attack, Revokes Them

On Monday, GitHub confirmed that threat actors stole digital certificates used for applications such as Desktop and Atom in a cyberattack that occurred in December 2022. GitHub stated that it investigated the incident and determined that there was no risk to GitHub’s services and that it detected no unauthorized changes

Read More
01 Feb 2023

BEC Group Uses Open Source Tactics in Hundreds of Attacks

Security researchers have identified a highly successful new business email compromise (BEC) group. The group has been named Firebrick Ostrich and has conducted at least 347 campaigns since April 2021. Firebrick Ostrich uses relatively unsophisticated techniques to target organizations, such as open source research to identify existing contracts and vendors,

Read More
01 Feb 2023

Microsoft’s Verified Publisher Status Abused in Email Theft Campaign

On Tuesday, Microsoft and cybersecurity firm Proofpoint warned that a threat actor had recently abused Microsoft’s verified publisher status to launch a campaign involving malicious OAuth applications. The warning stated that organizations using cloud services should be aware of the campaign, especially those in Ireland and the UK. Microsoft has

Read More
31 Jan 2023

Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware

TrickGate, a malicious live software service, has been deployed by threat actors in recent attacks to bypass endpoint detection. The malware is not new, and has been deployed against detection measures and response protection software for six years. Check Point Research recently released a report detailing TrickGate and its usage

Read More
31 Jan 2023

Killnet Attackers DDoS US and Dutch Hospitals

According to recent reports, Russian hactivists targeted several hospitals across the US and the Netherlands with DDoS attacks. The campaign targeted facilities including the University of Michigan Hospital and Stanford Health Care Center. The recent attacks may be in response to President Biden’s recent decision to send dozens of Abrams

Read More