08 Mar 2019

Egypt government used Gmail third-party apps to phish activists

Over the past few years, a series of privacy scandals including the Facebook/Cambridge Analytica scandal have spurred an international push for better privacy laws. In some parts of the world, policymakers have responded to this movement by introducing new data protection bills, such as the EU General Data Protection Regulation

Read More
07 Mar 2019

Iranian Hackers Caused Losses in Hundreds of Millions: Report

A new Microsoft report shared by The Wall Street Journal indicates that over the past two years, Iranian hacking groups have launched attacks against thousands of employees at about 200 organizations the globe. Hackers belonging to Holmium and APT33, two groups that have been linked two Iran, stole confidential information

Read More
06 Mar 2019

Chinese Hackers Targeted 27 Universities to Steal Maritime Research, Report Finds

According to research by iDefense that was first reported by the Wall Street Journal, a hacking group with ties to the Chinese government is trying to steal information on military maritime technology from 27 universities across the globe. The targeted academic institutions are located in the United States, Canada, and Southeast Asia,

Read More
05 Mar 2019

Chinese hackers use phishing emails to target engineering, transport and defence companies

Security researchers with FireEye believe that state-backed Chinese hackers are behind a cyber-espionage campaign that primarily targets US maritime organizations focusing on defense, engineering and transportation, although companies in various other countries have been attacked as well. FireEye says with “high confidence” that the group is supported by a nation

Read More
05 Mar 2019

WordPress accounted for 90 percent of all hacked CMS sites in 2018

A new study by Sucuri highlights the security shortcomings of e-commerce and other websites. According to the report, the vast majority of e-commerce websites using PrestaShop, OpenCart, Joomla or Magento that were hacked in 2018, were vulnerable to attacks because they ran outdated versions of these popular content management systems

Read More
04 Mar 2019

Researchers obtain a command server used by North Korean hacker group

Researchers with McAfee have conducted new research on Operation Sharpshooter, a global attack campaign the researchers link to the notorious North Korean hacking group known as Lazarus. A US government agency made the McAfee research possible by providing the company with access to an Operation Sharpshooter command and control (C2)

Read More
27 Feb 2019

SkOUT Lists Top 25 Passwords Leaked Online

SkOUT Secure Intelligence recently released a list of the 25 most common passwords that were leaked online last year. The list is fully made up of very weak passwords, which the average threat actor could crack in an instant. The fact that extremely obvious credentials like ‘123456’ and ‘password’ are

Read More
26 Feb 2019

The Dark Side of the Kremlin: Hacked Russian documents explained

On Monday, a massive database totaling 170 gigabytes of confidential data relating to prominent Russian political figures, business leaders, religious leaders and the Russian military, was published online by hackers belonging to Distributed Denial of Secrets (DDoS). DDoS describes itself as a “transparency collective” made up of mostly Ukrainian and

Read More
22 Feb 2019

New report questions effectiveness of cyber indictments

While recent articles discussing the Global Threat Report by CrowdStrike have mainly paid attention to the report’s ranking of how long state-backed hackers from various countries take to move laterally across the network of a compromised organization (spoiler alert: Russian hackers were fastest), certain less appreciated findings of the research actually have

Read More
20 Feb 2019

Ukraine Announces Joint Exercises with EU to Fend Off Russian Cyber Threats

Ukraine has announced that it will hold joint defense exercises with the European Union (EU) before the country’s March 31 presidential election. The Secretary of the Ukrainian National Security and Defense Council stated that “[t]he available information indicates that Russia intends to use the entire existing arsenal, including cybernetic means, to

Read More