03 May 2021

Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices

Security researchers at Microsoft have warned of 25 undocumented critical memory-allocation vulnerabilities that lie across a number of vendors’ IoT and industrial devices. The flaws could be used to execute malicious code throughout a network or cause an entire system to crash. The bugs were uncovered by Microsoft’s Azure Defender

Read More
27 Apr 2021

Ransomware Group Threatens DC Cops with Informant Data Leak

Russian-speaking ransomware threat actors have allegedly stolen highly sensitive information pertaining to the Washington DC police department’s informants. The group is called the Babuk group and has issued an ultimatum of three days to pay ransom demands before the data is shared with local gangs and the public. The group

Read More
23 Apr 2021

REvil’s Big Apple Ransomware Gambit Looks to Pay Off

The REvil ransomware gang recently made headlines for targeting tech giant Apple in a ransomware scheme initially launched against Quanta, a global manufacturer of electronics who claims Apple among its customers. REvil allegedly compromise Quanta’s systems and was able to access sensitive information pertaining to Apple’s schematics, threatening to release

Read More
21 Apr 2021

China-linked hackers used VPN flaw to target U.S. defense industry -researchers

According to cybersecurity researchers, at least two threat groups have spent months taking advantage of a previously undisclosed vulnerability in US virtual private networking (VPN) devices, exploiting the flaw to spy on the US defense industry. Cybersecurity researchers at Ivanti stated that hackers took advantage of the flaw in its

Read More
19 Apr 2021

Coding error allowed attackers to delete Facebook live video

Facebook has recently resolved an issue that allowed attackers to delete content posted on Facebook Live without the consent of the video’s owner. Just two days ago, cybersecurity researcher Ahmad Talahmeh posted an advisory explaining how the vulnerability worked and providing a Proof-of-Concept code that was able to trigger an

Read More
19 Apr 2021

FIN7 Sysadmin Gets 10 Years Behind Bars

Ukrainian national Fedir Hladyr has received 10 years behind bars for his part in financial crimes that cost firms and consumers billions. Hladyr was the manager and sysadmin for FIN7, also known as Carbanak, which is believed to have made millions of dollars by targeted banks, restaurants, gambling, and hospitality

Read More
15 Apr 2021

100,000 Google Sites Used to Install SolarMarket RAT

Hackers are currently utilizing search engine optimization (SEO) tactics to direct users seeking common business forums such as invoices, receipts, or other templates to redirect them to hacker-controlled domains. According to eSentire’s Threat Response Unit, attackers are currently in possession of more than 100,000 malicious Google sites that seem legitimate

Read More
15 Apr 2021

The FBI Takes a Drastic Step to Fight China’s Hacking Spree

In early March, Microsoft disclosed that the Chinese state-sponsored hacking group Hafnium had successfully infected tens of thousands of Microsoft Exchange servers in a massive and extensive hacking campaign. Although Microsoft promptly released a patch to fix the vulnerability and urged users to implement the fix as soon as possible,

Read More
14 Apr 2021

100 Million More IoT Devices Are Exposed—and They Won’t Be the Last

A set of nine vulnerabilities are currently exposing roughly 100 million devices worldwide, according to researchers. The vulnerabilities lie in the basic code that dictates how devices communicate with the internet. What cybersecurity researchers are questioning is how to implement changes and effective defenses that will actively combat these types

Read More
14 Apr 2021

Swedish Sports Body Hacked by Russians, Officials Say

Sweden’s national sports federations was allegedly hacked by the Russian military in 2017-2018, according to a new report released on Tuesday. The data-breaching campaign also affecting some of the world’s leading sports bodies, such as FIFA and the World Anti-Doping Agency. The country called the incident a series of repeated

Read More