19 Jul 2021

Recent Attacks Lead to Renewed Calls for Banning Ransom Payments

Several recent major cyberattacks have led to new calls for banning ransom payments. The attacks have disrupted businesses, caused supply chain ripples in the US economy, and wreaked havoc on hundreds of companies. Most notably, oil and gas transport network Colonial Pipeline and meat producer JBS USA were attacked within

Read More
16 Nov 2020

Russian, North Korean Hackers Target Vaccine Work

On Friday, tech giant Microsoft claimed in a blog post that it had observed several attempts by state-backed Russian and North Korean hackers aiming to steal sensitive and valuable data from pharmaceutical companies and organizations conducting vaccine research. Although Microsoft claims the attacks were unsuccessful over the recent months, the

Read More
04 Nov 2020

Games in Microsoft Store Can Be Abused for Privilege Escalation on Windows

A new flaw in Windows can allow malicious actors to exploit the vulnerability to escalate privileges to SYSTEM on Windows 10 through utilizing access through the Microsoft Store. Researchers at IOActive uncovered the threat, which was patched in October as part of Microsoft’s monthly Patch Tuesday. The flaw is known

Read More
07 Oct 2020

Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors

Microsoft has released a warning concerning the Mercury APT group and their active exploitation of the Zerologon vulnerability in campaigns occurring over the past two weeks. Mercury APT is an Iranian nation-state threat actor leveraging the critical flaw to attack organizations, who have also been referred to as MuddyWater, Static

Read More
17 Sep 2020

Likely Links Emerge Between Lazarus Group and Russian-Speaking Cybercriminals

Yesterday, newly published nalysis from the security firm Intel 471 uncovered links between North Korea’s Lazarus Group and Russian-speaking cybercriminals. The report pinpoints links between the two organizations through examining years of security incidents. The conclusion, however, depends on two popular and generally accepted assumptions: that the Trickbot, TA505, and

Read More
15 Sep 2020

Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity

The Cybersecurity and Infrastructure Agency (CISA) has released an alert detailing the Chinese Ministry of State Security affiliated cyber threat actors’ online presence. The report claims that the threat actors use publicly available information and sources as well as common tactics to target the US and affiliate agencies. the CISA

Read More
14 Jul 2020

Army Investigative Unit Looks to Detect and Trace Cryptocurrency Transactions

The Army Contracting Command, a top Pentagon investigative unit, announced plans to tap into an existing cloud-based solution in order to quickly detect unlawful cryptocurrency transactions. The entity invited potential new partners to offer opinions on their capacity to supply a cryptocurrency investigation service, stating that the application must provide

Read More
17 Feb 2020

500 Malicious Chrome Extensions Impact Millions of Users

Duo Security released an analysis on Thursday claiming that over 500 malicious Chrome extensions were secretly collecting browser data and redirecting users to websites containing malware. Researchers at Duo Security stated that the extensions have since been removed from Google’s Chrome Web Store, but that they were previously downloaded millions

Read More
05 Feb 2020

Twitter Confirms ‘Nation-State’ Attack: User Identities Breached

Twitter announced a security exposure from last year in which alleged state-sponsored actors used a Twitter feature to link identifiers to online accounts. The actors matched phone numbers to twitter usernames, a clear breach of anonymity when abused although the feature was designed to enhance the viral nature of the

Read More
19 Dec 2019

Member of ‘The Dark Overlord’ hacking group extradited to the US

A British national was transported to the US earlier this week, facing charges of hacking US companies. Nathan Francis Wyatt was a known member of the notorious hacking group The Dark Overlord (TDO). Wyatt pleaded not guilty to the charges he currently faces in a Saint Louis court yesterday. US

Read More