US Man Charged in $110m Crypto Trading Scheme
Avraham Eisenberg, a 27-year-old American man, has been charged with fraudulently obtaining $110 million of cryptocurrency from the crypto exchange Mango Markets. Avraham was reportedly living in Puerto Rico at the time of the scheme. He now faces up to 40 years in jail, according to the Department of Justice.
UK Car Retailer Arnold Clark Hit by Ransomware
Arnold Clark, a UK-based car retailer, has confirmed that it suffered from a cyberattack that resulted in the exposure of customer data. The Play ransomware group has taken credit for the attack via a message on its Tor-based leak website. Play claims to have obtained gigabytes of sensitive information from
City of London on High Alert After Ransomware Attack
Ion Cleared Derivatives, a key supplier of trading software to the City of London, has released a statement confirming that it was hit by a suspected ransomware attack. The attack affected some of its services and therefore disrupted activity in the derivatives market. According to the supplier, the incident has
Ransomware Attack Forces Closure of Nantucket Schools
On Tuesday, schools on the island of Nantucket, Massachusetts, were forced to shut down as a result of a ransomware attack. The closure impacted four establishments serving roughly 1700 students. Nantucket district superintendent Elizabeth Hallett announced the decision via email, stating that the district’s technology department was working to restore
30k Internet-Exposed QNAP NAS Devices Affected by Recent Vulnerability
Censys, an attack surface management firm, has identified roughly 30,000 internet-exposed QNAP network attacked storage appliances that have been affected by a critical vulnerability. The vulnerability is a critical-severity code injection vulnerability that is described as an SQL injection bug. It allows remote attackers to inject malicious code into vulnerable
GitHub Confirms Signing Certificates Stolen in Cyber-Attack, Revokes Them
On Monday, GitHub confirmed that threat actors stole digital certificates used for applications such as Desktop and Atom in a cyberattack that occurred in December 2022. GitHub stated that it investigated the incident and determined that there was no risk to GitHub’s services and that it detected no unauthorized changes
BEC Group Uses Open Source Tactics in Hundreds of Attacks
Security researchers have identified a highly successful new business email compromise (BEC) group. The group has been named Firebrick Ostrich and has conducted at least 347 campaigns since April 2021. Firebrick Ostrich uses relatively unsophisticated techniques to target organizations, such as open source research to identify existing contracts and vendors,
Microsoft’s Verified Publisher Status Abused in Email Theft Campaign
On Tuesday, Microsoft and cybersecurity firm Proofpoint warned that a threat actor had recently abused Microsoft’s verified publisher status to launch a campaign involving malicious OAuth applications. The warning stated that organizations using cloud services should be aware of the campaign, especially those in Ireland and the UK. Microsoft has
Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware
TrickGate, a malicious live software service, has been deployed by threat actors in recent attacks to bypass endpoint detection. The malware is not new, and has been deployed against detection measures and response protection software for six years. Check Point Research recently released a report detailing TrickGate and its usage
Killnet Attackers DDoS US and Dutch Hospitals
According to recent reports, Russian hactivists targeted several hospitals across the US and the Netherlands with DDoS attacks. The campaign targeted facilities including the University of Michigan Hospital and Stanford Health Care Center. The recent attacks may be in response to President Biden’s recent decision to send dozens of Abrams