Categories
APT Breach Cyber Security DDoS Emotet Malware Phishing Ransomware RAT Spearphishing Trojan Vulnerability

NameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Major cybersecurity events on 3rd April 2020: Domain names are leveraged to lure victims in the name of Coronavirus, NameCheap hosts one such domain. hacking forum OGUsers gets hacked again. Self-replicating Emotet infects Microsoft client’s entire network. Researcher hacks iOS, macOS camera vulnerabilities, Apple awards $75,000.Continue readingNameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Categories
APT Breach CVE Cyber Security Malware Phishing Spyware Vulnerability

Twitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Categories
Breach CVE Cyber Security Malware Phishing Vulnerability

Zoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more

Major cybersecurity events on 1st April 2020: Two Zoom zero-day vulnerabilities could allow root privileges to attackers. Windows vulnerability, SMBGhost, exploited for local privilege escalation. Wiper malware dubbed “Coronavirus” render disks unusable. Phishing emails lure victims with financial relief for Coronavirus.Continue readingZoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more

Categories
APT Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Zeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphinx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Categories
Breach CVE Malware Phishing Ransomware Ryuk Vulnerability

Ransomware targets Chubb, Poisoned News campaign serves malware, and more

Major cybersecurity events on 26th March 2020: 4G networks vulnerable to DoS attacks. Hackers deliver Oski malware via Coronavirus apps. Palesa breaches AMD, demands money in exchange of files. Hackers target Italy and Spain amidst Coronavirus pandemic. Maze ransomware hits Chubb.Continue readingRansomware targets Chubb, Poisoned News campaign serves malware, and more

Categories
Breach CVE Malware Trojan Vulnerability

Canon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE Malware Phishing Ransomware Trojan Vulnerability

GE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Categories
Breach Malware Phishing Ransomware

Ransomware hits Finastra, Extortion emails threaten to spread SARS-CoV-2, and more

Major cybersecurity events on 20th March 2020: Russia-linked cybercriminals’ recent attacks involve legitimate tools to avoid detection. Finastra staff detects potentially anomalous activity. FBI warns of phishing emails impersonating the govt. Scammers attempt to capitalize on coronavirus fear through extortion mails.Continue readingRansomware hits Finastra, Extortion emails threaten to spread SARS-CoV-2, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware Vulnerability

Mespinoza/Pysa ransomware, HawkEye, RedLine Malware

Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. Folding@home phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware