11 Jul 2019

Big Banks Vulnerable to Web, Mobile Attacks

ImmuniWeb researchers have found vulnerabilities in the web applications, APIs and/or mobile apps of 97 of the 100 largest financial organizations in the world, which are located across 22 countries. The report shows that 85 online banking apps where not compliant with GDPR, while 49 were not compliant with PCI

Read More
11 Jul 2019

Buhtrap Group Used Windows Zero-Day in Government Attack

Threat actors have been targeting a government institution in Eastern Europe by taking advantage of CVE-2019-1132, which is one of the two Windows zero-days fixed by Microsoft as part of this month’s Patch Tuesday, ESET researchers report. The hacking group, known as Buhtrap, abused the privilege escalation flaw in a June

Read More
10 Jul 2019

Hackers breached Greece’s top-level domain registrar

Earlier this year, a threat group referred to as Sea Turtle hacked into the systems of ICS-Forth, a firm that manages the top-level domain country codes used by Greece, namely .gr and .el. Sea Turtle goes after domain registrars and managed DNS providers because this allows the group to target

Read More
09 Jul 2019

Iran-Linked Malware Shared by USCYBERCOM First Seen in December 2016: Kaspersky

Against a background of mounting US-Iran tensions and reports that both countries have been stepping up offensive cyber campaigns directed at each other, United States Cyber Command (USCYBERCOM) recently uploaded various malware samples to VirusTotal that have been used by Iranian cyber espionage group APT 33. A Kaspersky report shows

Read More
08 Jul 2019

Croatian government targeted by mysterious hackers

Threat actors targeted Croatian government employees with spear phishing emails containing malicious links between February and April of this year. The campaign was probably orchestrated by a foreign government and likely resulted in the computers of various targets getting compromised. The spear phishing emails urged recipients to download a Microsoft

Read More
05 Jul 2019

YouTube Hacking Video Ban Sparks Outrage

A YouTube policy banning “instructional hacking and phishing” videos sparked outrage in the infosec community on Thursday after the website gave the prominent Null Byte YouTube channel a strike, preventing a researcher with the channel from uploading an educational cybersecurity video. Various security researchers have ran into this issue since

Read More
05 Jul 2019

The biggest concern for election security may be phishing

Outdated voting machines that are vulnerable to hacking are hardly the only cybersecurity concern for US election security officials. Earlier this week, the US Department of Homeland Security warned election officials across the country about the threat of phishing campaigns. Threat actors are targeting election officials with seemingly legitimate emails

Read More
04 Jul 2019

Silence Group Likely Behind Recent $3M Bangladesh Bank Heist

Group-IB researchers believe that the Silence hacking group is behind a recent string of cyberattacks targeting banks in Bangladesh. In May of this year, hackers were able to steal around $3 million from three banks (Dutch Bangla Bank Limited, NCC Bank, and Prime Bank) through illegal transactions at ATM machines

Read More
03 Jul 2019

Report: Pentagon Should Assume US Satellites Are Already Hacked

New research by London-based think tank Chatham House warns that NATO forces need to step up efforts to protect their space infrastructure from cyberattacks by Russia, China and other adversaries. Space-based systems are an increasingly important part of defense strategies, due to their role in guiding weapons, intelligence gathering, and

Read More
03 Jul 2019

US Military Warns Outlook Users To Update Immediately Over Hack Linked To Iran

US Cyber Command has issued an unprecedented alert about the “active malicious use” of a critical vulnerability in Microsoft Outlook by Iranian hackers. The warning follows recent reports that Iran and the US are targeting each other in offensive cyber campaigns in the midst of mounting tensions between the two

Read More