Categories
APT Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Zeus Sphynx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphynx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphynx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE Malware Phishing Ransomware Trojan Vulnerability

GE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Categories
Breach Cyber Security Emotet Malware TrickBot Trojan

Magecart target NutriBullet, Coronavirus app asks users for ransom, and more

Major cybersecurity events on 18th March: From registering several new domains to building a malicious tracker app, deceptive Coronavirus scammers are at large, making the most of the current situation. New TrickBot tool employed to disrupt PCs and telecommunications. Continue readingMagecart target NutriBullet, Coronavirus app asks users for ransom, and more

Categories
Breach CVE Malware MiTM Phishing Ransomware Stalkerware Vulnerability

COVID-19 malware and phishing scams, fake Google domains, and more

Major cyber security incidents on 17th March 2020: Scammers use COVID-19 as a guise to spread malware and phishing mails. APT36 calls coronavirus a ‘golden opportunity’ to distribute Crimson RAT. MacOS bundleware installer capable of much more than a normal installation software.Continue readingCOVID-19 malware and phishing scams, fake Google domains, and more

Categories
Breach Cyber Security Malware Phishing Ransomware Stalkerware

Coronavirus ransomware, MonitorMinor stalkerware, and more

Major cybersecurity events on 16th March 2020: Scammers pull off coronavirus-related apps and phishing campaigns intending to take advantage of unsuspecting victims. COVID-19 testing center also hit by a ransomware attack, possibly. MonitorMinor: Parental control app or Stalkerware?Continue readingCoronavirus ransomware, MonitorMinor stalkerware, and more

Categories
APT Breach Cyber Security Ransomware SIM swapping Spearphishing Spyware Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 13th March 2020

Round Up of Major Breaches and Scams Czech Republic’s second-biggest hospital is hit by cyberattack A large Czech Republic hospital responsible for running tests for the novel coronavirus said Friday that a cyberattack had hit its computer systems. It was not immediately clear how, if at all, the hack would affect University Hospital Brno’s ability to test for…Continue readingCloudSEK Daily Threat Bulletin – 13th March 2020

Categories
Breach CVE Cyber Security Malware Ransomware Snooping Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 12th March 2020

Round Up of Major Breaches and Scams Comcast accidentally published 200,000 “unlisted” phone numbers Comcast mistakenly published the names, phone numbers, and addresses of nearly 200,000 customers who paid monthly fees to make their numbers unlisted. The names and numbers were made available on Ecolisting, a directory run by Comcast, and picked up by third-party directories.…Continue readingCloudSEK Daily Threat Bulletin – 12th March 2020

Categories
CVE Cyber Security Ransomware Vulnerability

CloudSEK Daily Threat Bulletin – 3rd March 2020

Round Up of Major Breaches and Scams Exaggerated Lion carries out BEC attacks by exploiting G Suite features Researchers have found that African threat group Exaggerated Lion carries out Business Email Compromise (BEC) attacks by exploiting G Suite features. Since G suite offers a 30-day trial period, and allows users to send 500 emails per…Continue readingCloudSEK Daily Threat Bulletin – 3rd March 2020

Categories
Cyber Security Malware Phishing Ransomware

CloudSEK Daily Threat Bulletin – 27th February 2020

Round Up of Major Breaches and Scams Phishing campaign uses fake NortonLifelock documents to distribute RAT Researchers have discovered a phishing campaign, which uses fake NortonLifelock documents, to bait users into installing a RAT (remote access tool). The password-enabled document contains a malicious macro, which is executed, once the document is enabled by the victim.…Continue readingCloudSEK Daily Threat Bulletin – 27th February 2020