Categories
APT Breach Brute-force Cyber Security Data leak Hacking Ransomware Spying Spyware Vulnerability

Chinese hackers penetrates Taiwan semiconductor industry, Intel investigates major data leak, and more

Major cybersecurity events on 10th August 2020 (Morning Post): DoppelPaymer ransomware gang targets Coronavirus ventilator manufacturer Boyce Technologies, obstructs production of 300 ventilators per day. 400 Snapdragon vulnerabilities turns 3 billion Android phones into spying tools. Continue readingChinese hackers penetrates Taiwan semiconductor industry, Intel investigates major data leak, and more

Categories
Breach CVE Cyber Security Malware Ransomware TrickBot Trojan Vulnerability

Office 365 phishing emails masquerades as relief payments, Fake Black Lives Matter campaign spreads Trickbot, and more

Major cybersecurity events on 11th June 2020 (Evening Post): Healthcare provider Babylon suffers data breach. Alabama city decide to pay ransom after DoppelPaymer’s attack on 5 June. Thanos spreads to Windows users, evades security. Intel patches flaws in Active Management Technology.Continue readingOffice 365 phishing emails masquerades as relief payments, Fake Black Lives Matter campaign spreads Trickbot, and more

Categories
Breach CVE Cyber Security Malware Phishing Ransomware RAT RCE Trojan Vulnerability

Nintendo hacked to buy Fortnite currency, 1.5M COVID-themed malicious mails per day, Agent Tesla targets oil companies, and more

Major cybersecurity events on 21st April 2020: Increased number of Bad Bots scrape data and attempt logins on websites. Extremely annoying coronavirus-themed malware locks users out of Windows. DoppelPaymer targets Los Angeles. Hackers attempt to sell 3000 UniCredit employees’ details. Continue readingNintendo hacked to buy Fortnite currency, 1.5M COVID-themed malicious mails per day, Agent Tesla targets oil companies, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware RAT RCE Trojan Vulnerability

India bans Zoom, Multi-million dollar face mask scam busted, Sawfish phishing targets GitHub, and morew

Major cybersecurity events on 16th April 2020: Shipping giant MSC confirms malware attack. Agent Tesla steals WiFi pass. Zoom Windows, macOS zero-day vulnerabilities for sale. DoppelPaymer targets Visser defence contractor. PoetRAT hits Energy sector, uses data-stealing tools.Continue readingIndia bans Zoom, Multi-million dollar face mask scam busted, Sawfish phishing targets GitHub, and morew

Categories
Botnet Breach CVE Cyber Security Malware Ransomware Vulnerability

Zoom credentials on dark web, RigUp exposes 76,000 files, 115 Mn Pakistani mobile users data on dark web, and more

Major cybersecurity events on 10th April: Mediterranean Shipping Company suspects cyber attacks behind power outage. RigUp AWS S3 bucket exposes thousands of US Energy Sector private files. Card-skimmer malware targets WordPress plugin, WooCommerce. Travelex pays $2.3M as ransom, to hackers. Continue readingZoom credentials on dark web, RigUp exposes 76,000 files, 115 Mn Pakistani mobile users data on dark web, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware Vulnerability

Mespinoza/Pysa ransomware, HawkEye, RedLine Malware

Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. [email protected] phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware

Categories
Cyber Security Ransomware Vulnerability

CloudSEK Daily Threat Bulletin – 4th March 2020

Round Up of Major Breaches and Scams Tesco notifies Clubcard loyalty members of credential-stuffing attack U.K. supermarket chain Tesco has notified, 600,000 Clubcard loyalty program members, of a credential-stuffing attack. The attack came to light when Tesco’s internal systems detected attackers trying different combinations of usernames and passwords to access Clubcard accounts. The credentials are…Continue readingCloudSEK Daily Threat Bulletin – 4th March 2020

Categories
Cyber Security Phishing Ransomware Vulnerability

CloudSEK Daily Threat Bulletin – 2nd March 2020

Round Up of Major Breaches and Scams ‘SurfingAttack’ allows attackers to remotely control voice-controlled devices A new omni-directional attack method called SurfingAttack, allows attackers to control voice-controlled devices from a distance, without the victim’s knowledge. Attackers can use voice commands to instruct voice assistants to reveal sensitive data such as SMS authentication codes for online…Continue readingCloudSEK Daily Threat Bulletin – 2nd March 2020

Categories
Cyber Security Malware Phishing Ransomware Spearphishing

CloudSEK Daily Threat Bulletin – 26th February 2020

Round Up of Major Breaches and Scams Law enforcement partner Clearview notifies customers of breach Law enforcement partner Clearview has notified its customers of a breach that exposed the list of customers, their accounts, and their searches. The facial recognition platform, which is solely for law enforcement agencies, has purportedly collected ~3 billion facial images.…Continue readingCloudSEK Daily Threat Bulletin – 26th February 2020