Security
Russian cyber espionage gang adapts to target cloud systems
One of the most notorious and highly capable cyber espionage gangs, attributed to Russian intelligence services, has now evolved its tactics beyond traditional means to target cloud infrastructure, CISA, and other cyber defense, agencies warn.
Read more about Russian cyber espionage gang adapts to target cloud systems
The true cost of ransomware: 78% saw attackers coming back for more
There are many considerations to have in mind when choosing whether to pay or not pay a ransom to cyberattackers. The latest report by Cybereason reveals that only one in two victims who paid up got their data back uncorrupted, and four out of five were then breached again.
Read more about The true cost of ransomware: 78% saw attackers coming back for more
LinkedIn scams and how to avoid them
A new report finds that three in ten job board users have fallen victim to fake job ads on popular sites such as Indeed, LinkedIn, and Craigslist.
Read more about LinkedIn scams and how to avoid them
New WiFi vulnerabilities allow attackers to fake and overtake networks
Billions of Android users worldwide could be affected by a new WiFi vulnerability, which hackers may exploit to create clones of WiFi hotspots and intercept data, researchers have found. Another new vulnerability enables unauthorized access to protected home Wi-Fi networks, exposing devices and data.
Read more about New WiFi vulnerabilities allow attackers to fake and overtake networks
Mr. Cooper leak exposes over two million customers
Mr. Cooper, a major US mortgage company, left an open Google Cloud instance exposing details of millions of its customers only two months after the company suffered a severe data breach.
Read more about Mr. Cooper leak exposes over two million customers
Even adult toys want your personal information: don’t plug them into a USB
Hackers are always trying new methods to deliver information stealers that extract information about crypto wallets and credentials. One user found that a newly bought sex toy was infected with malware after trying to charge it from a computer.
Read more about Even adult toys want your personal information: don’t plug them into a USB
ConnectWise critical exploit, already in wild, is about to 'erupt'
A recently discovered ConnectWise level 10 CVSS vulnerability, affecting its ScreenConnect remote desktop and access software, is being exploited in the wild – and is expected to escalate in magnitude, according to researchers at Huntress Labs.
Read more about ConnectWise critical exploit, already in wild, is about to 'erupt'
LockBit crackdown heats up as US offers reward for info on hackers
The US offered a reward of up to $15 million for information on the leaders of the notorious cybercrime group LockBit on Wednesday, as Ukrainian police arrest a father-son duo in connection to the gang.
Read more about LockBit crackdown heats up as US offers reward for info on hackers
Russian Web hosting provider exposes data of more than 54M users
A website builder owned by a top Russian hosting provider has leaked millions of records with private user data.
Read more about Russian Web hosting provider exposes data of more than 54M users
Website builder leaks data of 200K users
Website builder Ucraft leaked the data of hundreds of thousands of users, which malicious actors have accessed and distributed.
Read more about Website builder leaks data of 200K users
Burglars using jammers to disable wireless smart home security
Wireless smart sensors and cameras may be “screaming” about broken glass, open doors, and burglars moving inside the house, but those radio signals may never reach the homeowner’s phone.
Read more about Burglars using jammers to disable wireless smart home security
New Russian cyber-espionage campaign targeting Europe’s webmail servers
Researchers are warning about a new cyber-espionage campaign against Roundcube webmail servers in Europe conducted by a Russian-linked threat actor with a “long-term strategic interest in gathering intelligence.” The main targets are government, military, and national infrastructure-related entities.
Read more about New Russian cyber-espionage campaign targeting Europe’s webmail servers
Volt Typhoon takes the stage: what we know about “defining threat of our generation”
Some Americans may have been unaware that their Wi-Fi router is a battlefield between Chinese hackers and the FBI and other agencies. After the latest intrusions, security researchers from Unit 42, a security arm of Palo Alto Networks, categorized Volt Typhoon as a top-tier cybergang. What do we know about it?
Read more about Volt Typhoon takes the stage: what we know about “defining threat of our generation”
Pentagon says 26K people impacted by data breach from early 2023
The US Department of Defense (DOD) is notifying more than 26,000 current and former employees, job applicants, and partners whose sensitive personally identifiable information was exposed in a “data breach incident” detected in early 2023, DefenseScoop has learned.
Read more about Pentagon says 26K people impacted by data breach from early 2023
Microsoft says nation-state hackers are using its AI tools
State-backed hackers from Russia, China, and Iran have been using tools from Microsoft-backed OpenAI to hone their skills and trick their targets.
Read more about Microsoft says nation-state hackers are using its AI tools
The way to your heart is through… ChatGPT
More people are using ChatGPT as a wingman and some suffer from a heartbreak of deepfakes, according to McAfee.
Read more about The way to your heart is through… ChatGPT
“20 fake bank accounts opened in my name”: stolen identity turns into nightmare
Celia from Australia had a firsthand experience of the circles of hell that identity theft victims have to go through. Even years later, she was fighting banks to stop criminals from using her name, and her story has some important lessons for everyone.
Read more about “20 fake bank accounts opened in my name”: stolen identity turns into nightmare
Trans-Northern Pipelines latest ALPHV/BlackCat ransom claim
Major Canadian oil and gas pipeline operators Trans Northern Pipelines (TNPI) have been claimed by the notorious ALPHV/BlackCat ransomware gang – one of six victims posted Tuesday in what appears to be a pre-Valentine's day ransom sweep.
Read more about Trans-Northern Pipelines latest ALPHV/BlackCat ransom claim
Rhysida Ransomware cracked: researchers release free decryptor
Rhysida Ransomware has just experienced its Enigma moment as Korean researchers from Kookmin University shared a method to decrypt files affected by this infamous malware strain.
Read more about Rhysida Ransomware cracked: researchers release free decryptor
Massive ransomware attack hits 18 hospitals in Romania
Romanian authorities announced a “massive” ransomware cyberattack affecting the activities of at least 18 hospitals. The Health information system (HIS) was knocked offline.
Read more about Massive ransomware attack hits 18 hospitals in Romania
