Major cybersecurity events on 24th June 2020 (Evening Post): Sodinokibi ransomware scan victim networks for credit card PoS software. Microsoft adds firmware protections to Windows. Nefilim targets organizations using unpatched Citrix remote-access technology.Continue readingPhishing campaign masquerades as QuickBooks invoices, Hakbit ransomware targets victims via Excel, and more
Major cybersecurity events on 21st May 2020 (morning post): Netfilim leaks 200 GB Toll Group data. Serco accidentally shares email addresses of 300 contact tracers. “Collection 1” hacker arrested. Adobe releases an out-of-band security update.Continue readingHome Chef finally confirms breach, BEC profiteers millions from unemployment, COVID scams, and more
Major cybersecurity events on 20th May 2020: Cosmetic giant leaks 192 million payment data records. 773 million password breach suspect arrested. WolfRAT targets Whatsapp, Messenger. REvil all set to auction Madonna’s data. Adobe patches Character Animator critical flaw.Continue readingGreenbug hacks Pakistan telecom firms, Microsoft warns of massive Excel phishing campaign, and more
Major cybersecurity events on 14th May 2020: Iran hackers attempt to interfere in the 2014 Scottish Independence referendum. City Index reports intrusion and a potential data breach in a notification to its users. Hacker selling 550 million stolen user records on hacking forum.
Continue reading9M CDEC Express customers data leaked, MagBo sells access to 43,000 servers, Microsoft 365 sign-in pages spoofed, and more
Major cybersecurity events on 23rd April 2020: Fraudsters trick British Equity Firms to transfer $1.3 million. Sodinokibi ransomware targets SeaChange next. Google TAG identifies APTs using COVID-19 as a cover for their espionage activities. Hackers target Danish Agro’s systems.Continue reading25,000 NIH, WHO email addresses dumped online, Phishing attack targets Skype, and more
Major cybersecurity events on 7th April 2020: FIN6 and TrickBot pair up to deliver TrickBot’s malware framework Anchor. Global COVID-19 apps found to have vulnerabilities. Microsoft Exchange severe flaw impacts 350k servers. Maze Ransomware targets HMR, Malwarebytes targeted in malverstising campaigns.Continue readingEmail.it hacked, Zoom login details on dark web, World Wired Labs sells trojan, FIN6 and TrickBot deliver Anchor, and more
Round Up of Major Breaches and Scams Exaggerated Lion carries out BEC attacks by exploiting G Suite features Researchers have found that African threat group Exaggerated Lion carries out Business Email Compromise (BEC) attacks by exploiting G Suite features. Since G suite offers a 30-day trial period, and allows users to send 500 emails per…Continue readingCloudSEK Daily Threat Bulletin – 3rd March 2020