Major cybersecurity events on 6th July 2020 (Morning Post): Threat actors leverage Tor networks to carry out system compromise, data exfiltration, DoS attacks, reconnaissance. FakeSpy malware resurfaces, steals text messages, financial data, bank login information, app data, etc.Continue readingDelhi University data privacy breach, Try2Cry ransomware infects USB flash drives, spreads to Windows, and more
Tag: Chrome
Major cybersecurity events on 19th June 2020 (Evening Post): Dark Web forums understaffed, several forums on hiring spree. Google removes 106 malicious Chrome extensions. IcedID Banker trojan returns, clasps steganography. Drupal patches code execution flaw.Continue readingOffice 365 phishing uses Oxford servers, Wells Fargo phishing campaign sends calendar invites, and more
Major cybersecurity events on 20th May 2020: Cosmetic giant leaks 192 million payment data records. 773 million password breach suspect arrested. WolfRAT targets Whatsapp, Messenger. REvil all set to auction Madonna’s data. Adobe patches Character Animator critical flaw.Continue readingGreenbug hacks Pakistan telecom firms, Microsoft warns of massive Excel phishing campaign, and more
Major cybersecurity events on 4th May 2020: Xiaomi denies tracking private browser, phone usage. 91 million Tokopedia accounts held for sale on dark web. NCSC warns of potential theft of Coronavirus research. Roblox insider bribed to access user data. Ransomware targets PeroxyChem.Continue readingJio symptom checker exposes results, CursedChrome turns browser to proxy bots, and more
Major cybersecurity events on 13th April 2020: The database of more than 1 million SCUF Gaming customers was exposed online. Two airport websites “SFOConnect.com” and “SFOConstruction.com” became targets of hackers. US consumers report $12M in COVID-19 scam losses. Oracle tackles a massive 405 bugs for its patch update.Continue readingCisco phishing targets Webex users, 1.41M US Doctors data on hacker forum, 500,000 Zoom accounts sold on dark web, and more
Major cybersecurity events on 9th April 2020: Scammers impersonate Trump and the White House via phishing emails, directing users to download malware. Maropost leaks 95 million email records. Ransomware targets Travelex. Cybercriminal forums advertises promotional codes and discounts.Continue readingCisco ‘Critical Update’ phishing attack, RigUp breach, Fake online COVID pharma, Emails impersonate Trump, and more
Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more
Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. [email protected] phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware
Round Up of Major Breaches and Scams Years-long campaign targets hackers through trojanized hacking tools Vietnam based threat group has been hacking other hackers through njRAT infected hacking tools. Instead of directly hacking systems, spreading trojanized hacking tools gives them complete access to a much larger pool of hacked data. These trojanized tools have been…Continue readingCloudSEK Daily Threat Bulletin – 10th March 2020
Round Up of Major Breaches and Scams T-Mobile discloses data breach due to attack on email vendor T-Mobile has disclosed a data breach that exposed their customers’ personal and financial information. The source is believed to be their email vendor, who was hacked. Some of the hacked accounts contained T-Mobile customers’ social security numbers, financial…Continue readingCloudSEK Daily Threat Bulletin – 5th March 2020