A group of Belarusian cyberattackers are claiming to have successfully launched a ransomware attack on Belarus’s state-run train company. The actions were allegedly performed in a bid to disrupt Russian troop movements. The group revealed the attack on Twitter, claiming to have encrypted some of the railway’s servers, databases, and

Hackers are leveraging Microsoft OneDrive in a multi-stage espionage campaign that aims to target high-ranking government officials in Western Asia. Researchers at Trellix released a report detailing the campaign. The cybercriminals are using a malware named “Graphite” by researchers because it uses Microsoft’s Graph API to leverage OneDrive as a

McAfee has recently patched two different high-severity bugs in its Agent component that could be used by attackers to escalate privileges, including up to SYSTEM. The bugs could also allow attackers to achieve arbitrary code execution and perform other malicious actions. The bug lies in the McAfee Enterprise product for

Crypto.com suspended all withdrawals from the platform on Monday and is forcing users to reset two-factor authentication methods, according to tweets from the company. And while Crypto.com is claiming everyone’s money is “safe,” there were reports from users on social media that millions may have been lost to hackers. “Earlier today

Hackers from North Korea stole nearly $400 million worth of cryptocurrency in 2021 through at least seven attacks and most of it was Ether or ETH rather than Bitcoin, according to blockchain analysis firm, Cainalysis. 2021 was a record year for North Korea’s military hackers, the most notorious of which is

Cybersecurity researchers have uncovered a critical vulnerability in the AWS Glue service that could allow remote attackers to access sensitive data owned by large numbers of customers. The bug was created due to an internal misconfiguration within the service. AWS Glue allows customers to combine data for projects such as

The government of El Salvador has denied responsibility for hacking the cell phones of possibly more than 35 journalists and members of society. The hack on the cell phones was carried out by using the spying program known as Pegasus. A report from Access Now and Citizen Lab claimed the

Researchers from Avanan, a Check Point company, discovered an ongoing campaign in which threat actors are creating accounts within Adobe Cloud suite and sending images of illegitimate PDFs to target Gmail and Office 365 users. The campaign was uncovered in December. The PDF links and other malicious email attachments lead

The Medical Review Institute of America (MRIoA) has suffered from a cyberattack that may have exposed the personal data of over 134,000 individuals. The institute is based in Salt Lake City, Utah. The cyber incident was reportedly discovered on November 9, 2021 after unauthorized access was detected. According to MRIoA,

According to forensic analysis conducted by Amnesty International and Citizen Lab, 35 journalists and activists in El Salvador were targets of the highly invasive Pegasus spyware. The malicious software was used to extract information from their cellphones as civil liberties saw a drastic decline in the country. Information regarding the