Major cybersecurity events on 04 January 2021 (Morning Post): Hacker sells 368 million users’ records stolen from 26 companies including Sitepoint. 6.15 lakh Facebook users’ account compromised by Facebook ad phishing campaign. Backdoor discovered in over 100,000 Zyxel firewalls.Continue readingPayPal phishing campaign steals user credentials, Microsoft’s Windows Core Polaris OS leaks online, and more
Tag: DoppelPaymer
Major cybersecurity events on 28th December 2020 (Morning Post): Misconfigured AWS Bucket exposes hundreds of social influencers. Kaspersky Lab and Yandex detects malicious browser extensions including Frigate Light, Frigate CDN and SaveFrom. Fake Amazon gift card emails deliver the malware.Continue readingiCloud outage causes account activation failure, GoDaddy apologizes for insensitive phishing email, and more
Major cybersecurity events on 17th December 2020 (Morning Post): IRS form fraud campaign targets G Suite users, affects 50,000 executives already. FireEye, GoDaddy, and Microsoft creates kill switch for SolarWinds backdoor. DoppelPaymer ransomware gang harasses victims who refuse to pay.Continue reading3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more
Major cybersecurity events on 8th December 2020 (Evening Post): D-Link VPN routers’ remote command injection bugs gets patched. Expert discloses zero-click, wormable flaw in Microsoft Teams. PlayStation Now critical remote code execution fixed. Google patches four high‑severity flaws in Chrome.Continue reading2,732 PickPoint package delivery lockers hacked, DoppelPaymer gang demands $34M ransom from Foxconn, and more
Major cybersecurity events on 8th December 2020 (Morning Post): DoppelPaymer ransomware operators hit Mexican facility of electronics giant Foxconn. Rana Android malware variant spies on instant messages in WhatsApp, Telegram, Skype. PS Now bugs let sites run malicious code on Windows PCs.Continue readingPhishing campaign targets 200M 365 accounts, Mercy Health fires employee over insider breach, and more
Major cybersecurity events on 30th November 2020 (Evening Post): Office 365 phishing campaign leverages Oracle and Amazon cloud services, A hacker is selling access to the email accounts of hundreds of C-level executives, Operators behind Dark Caracal are still alive and operational. Continue readingA hacker is selling access to the email accounts of hundreds of C-level executives, Operators behind Dark Caracal are still alive and operational, and more
Major cybersecurity events on 10th November 2020 (Morning Post): Pro-Trump site, dontpressthegreenbutton.com, claiming Arizona election fraud exposes voter data. DoppelPaymer ransomware gang targets laptop manufacturer Compal, demands $17m in Bitcoins. WordPress bugs let attackers hijack 100K sites.Continue readingMicrosoft worker gets 9 years in prison over fraud scheme, Npm package steals sensitive Discord files, and more
Major cybersecurity events on 30th October 2020 (Evening Post): Information Commissioner’s Office fines Reliance Advisory Limited with £250,000 for making nuisance calls. DoppelPaymer leaks voter info stolen from Hall County, Georgia. Critical OpenEMR flaw allows hackers to access health records.Continue readingBritain fines Marriott £18.4M for data breaches, Hacker allegedly steals $2.3M Trump reelection account, and more
Major cybersecurity events on 23rd September 2020 (Morning Post): CISA’s advisory warns of notable increase in LokiBot malware. German investigators blame Russian DoppelPaymer gang for deadly hospital attack. Firefox 81 released with credit card autofill and new theme.Continue reading179 arrests made for drug trafficking on darknet, Luxottica confirms ransomware attack, disrupts work, and more