Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more
Major cybersecurity events on 1st April 2020: Two Zoom zero-day vulnerabilities could allow root privileges to attackers. Windows vulnerability, SMBGhost, exploited for local privilege escalation. Wiper malware dubbed “Coronavirus” render disks unusable. Phishing emails lure victims with financial relief for Coronavirus.Continue readingZoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more
Major cybersecurity events on 31st March 2020: Watering holes attacks target Asians, uses Flash updates. Vulnerability in WordPress allows administrative access to users. Saudi Arabia secretly tracks its citizens. Zoom client leaks credentials to attackers. Data breach impacts 5.2Mn Marriott hotel guests. LimeRAT installs a range of malware strains.Continue readingMarriott breached, Kwampirs targets healthcare sector, LimeRAT campaign, and more
Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphynx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphynx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more
Major cybersecurity events on 27th March 2020: Teleworking attracts brute-force attacks on Linksys routers. European companies targeted by hackers, suspected to be the Silence and TA505 groups. FBI warns of malicious USB drives delivered via USPS. Remcos RAT payloads target U.S. SBA.Continue readingRemcos RAT cloaked as SMB grants, Malicious USBs doing the rounds, Hacked Linksys routers, and more
Major cybersecurity events on 26th March 2020: 4G networks vulnerable to DoS attacks. Hackers deliver Oski malware via Coronavirus apps. Palesa breaches AMD, demands money in exchange of files. Hackers target Italy and Spain amidst Coronavirus pandemic. Maze ransomware hits Chubb.Continue readingRansomware targets Chubb, Poisoned News campaign serves malware, and more
Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more
Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more
Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more
Major cybersecurity events on 20th March 2020: Russia-linked cybercriminals’ recent attacks involve legitimate tools to avoid detection. Finastra staff detects potentially anomalous activity. FBI warns of phishing emails impersonating the govt. Scammers attempt to capitalize on coronavirus fear through extortion mails.Continue readingRansomware hits Finastra, Extortion emails threaten to spread SARS-CoV-2, and more