Major cybersecurity events on 16th November 2020 (Morning Post): Intel fixes a series of bugs that made it possible for attackers to install malicious firmware, Apple has issued multiple security updates, and TroubleGrabber malware targets Discord users.Continue readingHackers attack major Telegram channels, North Face suffers credential stuffing attack, and more
Tag: Apple
Major cybersecurity events on 10th November 2020 (Morning Post): Pro-Trump site, dontpressthegreenbutton.com, claiming Arizona election fraud exposes voter data. DoppelPaymer ransomware gang targets laptop manufacturer Compal, demands $17m in Bitcoins. WordPress bugs let attackers hijack 100K sites.Continue readingMicrosoft worker gets 9 years in prison over fraud scheme, Npm package steals sensitive Discord files, and more
Major cybersecurity events on 6th November 2020 (Morning Post): Ragnar Locker demands $15 million after stealing 2 TB unencrypted Campari files. North Korean cyberespionage campaign uses Torisma spyware to monitor victims in stealth. Apple releases updates for 3 actively exploited 0-day vulnerabilities. Continue readingUS DoJ seizes $1B in Bitcoins tied to Silk Road, Hackers compromise 1,200 company VoIP servers, and more
Major cybersecurity events on 05th November 2020 (Morning Post): QBOt election-themed phishing emails infect victims with malicious payloads, to harvest user data. Japanese game developer Capcom targeted by cyberattack, disrupts business operations. Hackers abuse Google Forms to phish for AT&T credentials.Continue readingCork hospital fined €65K over data mishandling, ShinyHunters target Mashable, leaks 5.22GB database, and more
Major cybersecurity events on 3rd November 2020 (Evening Post): Emotet soars over 1200% between Q2 and Q3 of this year, warns HP Inc. FireEye releases ThreatPursuit pre-configured virtual machine, to help threat intelligence analysts hunt down adversaries. Russian hacker jailed for $100M botnet fraudulent scheme.Continue reading12% ICS security incidents by nation-state actors, Ransomware gangs return, target healthcare, and more
Major cybersecurity events on 28th October 2020 (Morning Post): Hackers hack and deface Donald Trump’s official campaign website donaldjtrump.com. Facebook removes network of fake Iranian accounts and pages, peddling US election misinformation. Ryuk ransomware hits furniture giant Steelcase.Continue reading21 malicious Google Play apps downloaded 8M times, Hackers blackmail Vastaamo patients after breach, and more
Major cybersecurity events on 27th October 2020 (Morning Post): WastedLocker ransomware hits ski resort operator Boyne Resorts, impacts company wide reservation systems. After Haldiram’s was targeted in a vicious ransomware attack last month, office of Mithaas sweets, Noida suffered a similar attack.Continue readingMicrosoft kills Internet Explorer for new Edge browser, Deepfake Bots on Telegram display nudity, and more
Major cybersecurity events on 12th October 2020 (Morning Post): Tyler Technologies pays ransom to obtain decryption key, following ransomware attack. Clop ransomware hits tech giant Software AG, demands over $20 million as ransom. Russia-linked threat group TA505 exploits Zerologon through fake software updates.Continue readingMarketing firm Friendemic exposes 2.7M customer records, Docsketch discloses security breach, and more
Major cybersecurity events on 9th October 2020 (Evening Post): Cybercriminals target Playback Now conference platform with payment card skimmer. Fitbit gallery can be used to distribute malicious apps. 55 new security flaws reported in Apple software and services.Continue readingCriminals steal over £100,000 from old aged in Lancaster, Ransomware gang leverages Zerologon in attacks, and more
Major cybersecurity events on 9th October 2020 (Morning Post): Office of the Comptroller of the Currency fines Morgan Stanley $60 million for 2016 data breach. Sam’s Club customer accounts hacked in credential stuffing attacks. Android ransomware abuses notification services, warns Microsoft.Continue readingApple pays $288,000 to hackers who reported vulnerabilities, Google adds password breach alerts to Chrome, and more