Categories
Breach CVE Cyber Security Malware Phishing Ransomware RAT TrickBot Trojan Vulnerability

Email.it hacked, Zoom login details on dark web, World Wired Labs sells trojan, FIN6 and TrickBot deliver Anchor, and more

Major cybersecurity events on 7th April 2020: FIN6 and TrickBot pair up to deliver TrickBot’s malware framework Anchor. Global COVID-19 apps found to have vulnerabilities. Microsoft Exchange severe flaw impacts 350k servers. Maze Ransomware targets HMR, Malwarebytes targeted in malverstising campaigns.Continue readingEmail.it hacked, Zoom login details on dark web, World Wired Labs sells trojan, FIN6 and TrickBot deliver Anchor, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach Cyber Security Emotet Malware TrickBot Trojan

Magecart target NutriBullet, Coronavirus app asks users for ransom, and more

Major cybersecurity events on 18th March: From registering several new domains to building a malicious tracker app, deceptive Coronavirus scammers are at large, making the most of the current situation. New TrickBot tool employed to disrupt PCs and telecommunications. Continue readingMagecart target NutriBullet, Coronavirus app asks users for ransom, and more

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020

Categories
Breach CVE Malware Ransomware TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 6th March 2020

Round Up of Major Breaches and Scams Brazilian security firm exposes 25 GB of data on leaky S3 bucket A Brazilian home and business security firm has exposed 25 GB of files on a leaky S3 bucket. The files, which include tax documents, payment slips, and social security documents, reveal their clients’ contract details and…Continue readingCloudSEK Daily Threat Bulletin – 6th March 2020

Categories
Breach CVE Emotet Malware Phishing Ransomware Ryuk TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 5th March 2020

Round Up of Major Breaches and Scams T-Mobile discloses data breach due to attack on email vendor T-Mobile has disclosed a data breach that exposed their customers’ personal and financial information. The source is believed to be their email vendor, who was hacked. Some of the hacked accounts contained T-Mobile customers’ social security numbers, financial…Continue readingCloudSEK Daily Threat Bulletin – 5th March 2020

Categories
Cyber Security Ransomware TrickBot

CloudSEK Daily Threat Bulletin – 28th February 2020

Round Up of Major Breaches and Scams Error in official Walgreens app exposes users’ personal data An error in the official app of US pharmacy chain Walgreens allowed users to view other users’ names, prescriptions, store number, and shipping addresses. The company announced that for a week, an error in the app’s personal secure messaging…Continue readingCloudSEK Daily Threat Bulletin – 28th February 2020

Categories
Cyber Security Malware Phishing Ransomware TrickBot

CloudSEK Daily Threat Bulletin – 18th February 2020

Round Up of Major Breaches and Scams WHO issues warning against Coronavirus themed phishing attacks The World Health Organization (WHO) has issued a warning about the growing threat of phishing attacks that are employing Coronavirus related content to deliver malware. There are phishing messages claiming to be from WHO officials, requesting victims to share usernames…Continue readingCloudSEK Daily Threat Bulletin – 18th February 2020

Categories
APT CVE DMA Ryuk TrickBot

CloudSEK Daily Threat Bulletin – 31st January 2020

In the last 24 hours, as the world still reels from the sale of 30 million cards on Joker’s Stash, the UN has confirmed that their servers were exploited because of a SharePoint flaw that was patched in March 2019. As testimony to the growing sophistication of hackers, a new attack strategy that uses HTML…Continue readingCloudSEK Daily Threat Bulletin – 31st January 2020