Categories
Botnet Breach CVE Cyber Security Malware Ransomware Vulnerability

Zoom credentials on dark web, RigUp exposes 76,000 files, 115 Mn Pakistani mobile users data on dark web, and more

Major cybersecurity events on 10th April: Mediterranean Shipping Company suspects cyber attacks behind power outage. RigUp AWS S3 bucket exposes thousands of US Energy Sector private files. Card-skimmer malware targets WordPress plugin, WooCommerce. Travelex pays $2.3M as ransom, to hackers. Continue readingZoom credentials on dark web, RigUp exposes 76,000 files, 115 Mn Pakistani mobile users data on dark web, and more

Categories
Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Cisco ‘Critical Update’ phishing attack, RigUp breach, Fake online COVID pharma, Emails impersonate Trump, and more

Major cybersecurity events on 9th April 2020: Scammers impersonate Trump and the White House via phishing emails, directing users to download malware. Maropost leaks 95 million email records. Ransomware targets Travelex. Cybercriminal forums advertises promotional codes and discounts.Continue readingCisco ‘Critical Update’ phishing attack, RigUp breach, Fake online COVID pharma, Emails impersonate Trump, and more

Categories
Breach CVE Cyber Security Malware Phishing Ransomware RAT TrickBot Trojan Vulnerability

Email.it hacked, Zoom login details on dark web, World Wired Labs sells trojan, FIN6 and TrickBot deliver Anchor, and more

Major cybersecurity events on 7th April 2020: FIN6 and TrickBot pair up to deliver TrickBot’s malware framework Anchor. Global COVID-19 apps found to have vulnerabilities. Microsoft Exchange severe flaw impacts 350k servers. Maze Ransomware targets HMR, Malwarebytes targeted in malverstising campaigns.Continue readingEmail.it hacked, Zoom login details on dark web, World Wired Labs sells trojan, FIN6 and TrickBot deliver Anchor, and more

Categories
Breach CVE Cyber Security Malware RAT Trojan Vulnerability

Rostelecom hijacks Google, AWS traffic, Kinsing targets Docker, Zoom users’ videos exposed online, and more

Major cybersecurity events on 6th April 2020: PII of small business owners seeking COVID relief payments, exposed. 14 million Key Ring users’ data leak. Hackers install new crypto-mining malware on Docker servers. Fake Zoom installers distribute malware. More than 12k Android apps have secret access keys, secret commands. Continue readingRostelecom hijacks Google, AWS traffic, Kinsing targets Docker, Zoom users’ videos exposed online, and more

Categories
APT Breach CVE Cyber Security Malware Phishing Spyware Vulnerability

Twitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Categories
APT Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Zeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphinx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE Malware Phishing Ransomware Trojan Vulnerability

GE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Categories
Breach Cyber Security Emotet Malware TrickBot Trojan

Magecart target NutriBullet, Coronavirus app asks users for ransom, and more

Major cybersecurity events on 18th March: From registering several new domains to building a malicious tracker app, deceptive Coronavirus scammers are at large, making the most of the current situation. New TrickBot tool employed to disrupt PCs and telecommunications. Continue readingMagecart target NutriBullet, Coronavirus app asks users for ransom, and more

Categories
Breach CVE Malware MiTM Phishing Ransomware Stalkerware Vulnerability

COVID-19 malware and phishing scams, fake Google domains, and more

Major cyber security incidents on 17th March 2020: Scammers use COVID-19 as a guise to spread malware and phishing mails. APT36 calls coronavirus a ‘golden opportunity’ to distribute Crimson RAT. MacOS bundleware installer capable of much more than a normal installation software.Continue readingCOVID-19 malware and phishing scams, fake Google domains, and more