Major cybersecurity events on 17th December 2020 (Morning Post): IRS form fraud campaign targets G Suite users, affects 50,000 executives already. FireEye, GoDaddy, and Microsoft creates kill switch for SolarWinds backdoor. DoppelPaymer ransomware gang harasses victims who refuse to pay.Continue reading3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more
Category: Spam
Major cybersecurity events on 8th December 2020 (Evening Post): D-Link VPN routers’ remote command injection bugs gets patched. Expert discloses zero-click, wormable flaw in Microsoft Teams. PlayStation Now critical remote code execution fixed. Google patches four high‑severity flaws in Chrome.Continue reading2,732 PickPoint package delivery lockers hacked, DoppelPaymer gang demands $34M ransom from Foxconn, and more
Major cybersecurity events on 8th December 2020 (Morning Post): DoppelPaymer ransomware operators hit Mexican facility of electronics giant Foxconn. Rana Android malware variant spies on instant messages in WhatsApp, Telegram, Skype. PS Now bugs let sites run malicious code on Windows PCs.Continue readingPhishing campaign targets 200M 365 accounts, Mercy Health fires employee over insider breach, and more
Major cybersecurity events on 4th November 2020 (Evening Post): Cannabis growers’ community website exposes more than 3.4 million user records, passwords. Maze clients turn to Sekhmet ransomware group’s Egregor as a substitute. Microsoft store games abused for Windows privilege escalation.Continue readingBitcoin wallet emptied of $1B ahead of US election, Over 23,600 hacked databases leaked on Telegram, and more
Major cybersecurity events on 19th October 2020 (Morning Post): FIN11 gang starts to deploy ransomware to monetize its cybercriminal activities. Iran-linked cyberespionage APT group Silent Librarian launches phishing campaigns to target universities. Ransomware attack on health tech firm disrupts COVID clinical trials.Continue reading20 QQAAZZ members charged for money laundering, Hackers attack Haldiram’s, demand Rs. 7.5 lakh, and more
Major cybersecurity events on 13th October 2020 (Morning Post): Security firms ESET, Black Lotus Labs, Symantec, and financial group team up to take down Trickbot ransomware. German tech giant Software AG continues to struggle against $20M ransomware attack. Continue readingQBot leverages Defender Antivirus phishing bait, Hacked security cam stolen footage sold on adult sites, and more
Major cybersecurity events on 12th October 2020 (Morning Post): Tyler Technologies pays ransom to obtain decryption key, following ransomware attack. Clop ransomware hits tech giant Software AG, demands over $20 million as ransom. Russia-linked threat group TA505 exploits Zerologon through fake software updates.Continue readingMarketing firm Friendemic exposes 2.7M customer records, Docsketch discloses security breach, and more
Major cybersecurity events on 5th October 2020 (Morning Post): University Hospital New Jersey pays ransom of $670K to prevent publishing of 240GB data. Egregor ransomware threatens a mass-media release of victims’ corporate data. Emotet malware interferes in the 2020 US Presidential Election. Continue readingH&M charged with €35.2m fine for GDPR violations, 2 million Edureka users’ data exposed in data breach, and more
Major cybersecurity events on 17th September 2020 (Evening Post): Zhenhua Data Information Technology accused of collecting data on millions of people. Maze attackers adopt Ragnar Locker virtual machine technique. Winnti hackers attack 100+ companies, US announces charges. Continue readingPill scam campaign bypasses spam filters, Duesseldorf University Clinic hacked, patient dies, and more
Major cybersecurity events on 14th September 2020 (Morning Post): 3.4 million patient data breached in Blackbaud ransomware incident, states interim report. New Twitter phishing scam steals login credentials of unsuspecting users. Development Bank of Seychelles hit by ransomware attack.Continue readingRyuk targets US court with the Conti strain, Zoom adds and extra layer of security: 2FA, and more