17 Sep 2021

Cyberattacks against the aviation industry linked to Nigerian threat actor

Researchers have uncovered a campaign against the aviation sector and tracked it back to Nigeria-based threat actors. Microsoft Intelligence released a series of tweets outlining the campaign, which it determined to target aerospace and travel sectors with spear-phishing emails distributing an actively developed loader. The loader then delivers two different

Read More
28 Oct 2020

Facebook warns of “perception hacks” undermining trust in democracy

On Tuesday, Facebook released a warning stating that threat actors are utilizing social media to claim responsibility for illegitimate “major electoral systems hacks” or are pretending to have otherwise disrupted the 2020 Presidential election process. This is referred to in the advisory as perception hacking, and Facebook states that it

Read More
15 Oct 2020

FIN11 Spun Out From TA505 Umbrella as Distinct Attack Group

Researchers have declared that FIN11 now represents a separate threat actor group and has split off from the cybercrime group known as TA505. Although there are similarities in the techniques and identifying tactics of the two groups, researchers have determined that they are two distinct and separate operating entities with

Read More
04 Jun 2020

Netwalker ransomware continues assault on US colleges, hits UCSF

Netwalker Ransomware operators have claimed to have carried out a successful cyberattack on the University of California San Francisco (UCSF). The group allegedly stole unencrypted data, as well as encrypted their systems. UCSF, a health sciences research university, ranks highly among medical schools for research and primary care. Netwalker has

Read More
03 Jan 2020

Maze Ransomware Sued for Publishing Victim’s Stolen Data

The anonymous threat actors behind the Maze Ransomware attacks are being sued by a victim after an attack in early December left their information vulnerable. The victim, US company Southwire, claims that Maze accessed their network, stole and encrypted data, and later published the information after Southwire failed to pay

Read More