New research by IssueMakersLab has identified a unique state-sponsored threat campaign targeting retired South Korean government and military officials. Between July and August of this year, hackers linked to the North Korean regime sent spear phishing emails to the accounts of former officials. The emails contained malicious links that redirected

Hackers belonging to a threat group dubbed LYCEUM (aka HEXANE) have been launching attacks on organizations in the oil and gas sector since May of this year, new research by SecureWorks shows. This campaign primarily targets firms located in the Middle East, but LYCEUM has been active since April of

A top NASA astronaut may have committed the first crime in space by hacking into the bank account of her estranged spouse from the International Space Station earlier this year. Astronaut Anne McClain and her wife Summer Worden are in the process of ending their marriage, while fighting over the custody

In the first six months of this year, there were over 4,000 fewer entries in the common vulnerabilities and exploits (CVE) database, a new report by Risk Based Security shows. However, the study warns that 34% of the more than 11,000 security flaws that were reported, haven’t been patched yet.

Security researchers are warning that threat actors have begun scanning the web for servers vulnerable to flaws affecting two highly popular VPN solutions. By exploiting vulnerable servers, hackers could steal login credentials , encryption keys and other sensitive information belonging to users of Fortigate VPN and Pulse Secure VPN. The

Hosting provider and domain registrar Hostinger has experienced a security breach impacting millions of customers. A threat actor recently hacked into an internal server, which ultimately allowed them to make “API calls affecting information about Clients.” The API calls were made against a massive database containing the personal data of

The three biggest cyber threats to healthcare organizations are cyber espionage, data theft and destructive cyber attacks, a new FireEye report indicates. According to the study, threat actors are selling numerous compromised healthcare databases on underground forums, most of which costs less than $2,000. These databases contain the personally identifiable

Over the last year, the financially motivated Silence hacking group primarily targeted banks and final institutions in Asia, Europe, Russia, and the former Soviet Union states, but its rapid expansion poses a growing threat to organizations across the globe, new research by Group-IB indicates. The Russian-speaking advance persistent threat (APT)

In April of this year, FireEye security experts detected and eventually stopped a cyberattack on a research university located in the United States. Interesting detail: the attack was launched by the notorious Chinese state-backed cyber espionage group APT41. The attackers went after an Internet-facing web server and managed to exploit

Security researchers have uncovered a backdoor in Webmin, a highly popular application for remotely managing Linux servers and other Unix-based systems. Threat actors could use the backdoor to take over machines running Webmin and subsequently target the remote systems being managed via the app. Webmin is installed on over 1