Categories
APT Botnet Breach Bug CVE Cyber Security Data leak Hacking Malware Phishing Ransomware REvil Scam Skimming Trojan Vulnerability Zero-day

Threat actors target Finnish politicians’ email accounts, 21 Buttons exposes millions of users’ data, and more

Major cybersecurity events on 28th December 2020 (Evening Post): Multi-platform card skimmer found on Shopify, BigCommerce stores. REvil hackers plan to leak photos of plastic surgery patients after massive hack. GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic.Continue readingThreat actors target Finnish politicians’ email accounts, 21 Buttons exposes millions of users’ data, and more

Categories
Breach Bug Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Vulnerability

Elasticsearch server leaks 12M medical records, Ledger database dumped on Raidforums marketplace, and more

Major cybersecurity events on 23rd December 2020 (Evening Post): ACLU sues FBI to learn how It obtains data from encrypted devices. Cyber security firm Cellebrite claims to be able to access Signal messages. Millions of devices affected by vulnerabilities used in stolen FireEye tools.Continue readingElasticsearch server leaks 12M medical records, Ledger database dumped on Raidforums marketplace, and more

Categories
Breach Bug Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Trojan Vulnerability

Users are advised to ignore FB Christmas bonus scam, Mexican drug cartels hold high-tech spyware, and more

Major cybersecurity events on 17th December 2020 (Evening Post): Phobos launches Orbital to find attack pathways and entry points in networks. Two malware-laced gems found in RubyGems repository, capable of replacing cryptocurrency wallet address in clipboard with attacker-supplied one.Continue readingUsers are advised to ignore FB Christmas bonus scam, Mexican drug cartels hold high-tech spyware, and more

Categories
APT Breach Bug Cyber Security Data leak DoppelPaymer Hacking Malware Phishing Ransomware Scam Spam Vulnerability

3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more

Major cybersecurity events on 17th December 2020 (Morning Post): IRS form fraud campaign targets G Suite users, affects 50,000 executives already. FireEye, GoDaddy, and Microsoft creates kill switch for SolarWinds backdoor. DoppelPaymer ransomware gang harasses victims who refuse to pay.Continue reading3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more

Categories
APT Breach Bug CVE Cyber Security Data leak Espionage Hacking Malware Phishing Ransomware Scam Spearphishing Vulnerability

Sensitive data of 2M CPC members exposed, Google outage affects Youtube, Gmail, Google services, and more

Major cybersecurity events on 14th December 2020 (Evening Post): Russian Hackers Steal Data for Months in SolarWinds global supply chain attacks. Microsoft partially fixes Windows 10 Conexant audio driver issues. Robotic Process Automation vendor UiPath discloses data breach.Continue readingSensitive data of 2M CPC members exposed, Google outage affects Youtube, Gmail, Google services, and more

Categories
APT Botnet Breach Bug CVE Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Spearphishing TrickBot Vulnerability Zero-day

SolarWinds breached, infects multiple US companies, Pay2Key compromises Habana Labs’ networks, and more

Major cybersecurity events on 14th December 2020 (Morning Post): Hackers backed by foreign govt. breach US Treasury, steal data. Major leak exposes members and ‘lifts the lid’ on the Chinese Communist Party. Former Cisco engineer gets two years in prison for Webex Teams hack.Continue readingSolarWinds breached, infects multiple US companies, Pay2Key compromises Habana Labs’ networks, and more

Categories
APT Breach Bug Cyber Security Data leak Espionage Hacking Malware Phishing Ransomware RAT RCE Scam Virus Vulnerability

Facebook reveals the identity of APT32, Air France-KLM victim of cyber attack, impact unclear, and more

Major cybersecurity events on 11th December 2020 (Morning Post): U.S. warns of increased cyberattacks against K-12 educational institutions. Scammers use Chrome, Firefox extensions in widespread ad fraud campaign. Widespread malware attacks target major browsers.Continue readingFacebook reveals the identity of APT32, Air France-KLM victim of cyber attack, impact unclear, and more

Categories
Botnet Breach Bug CVE Cyber Security Data leak DDoS Hacking Malware Phishing Ransomware Scam Vulnerability Zero-day

Global cybercrime losses cross $1 trillion mark, Hackers steal FireEye Red Team tools, and more

Major cybersecurity events on 9th December 2020 (Evening Post): Phorpiex Botnet is the “Most Wanted Malware” in its Global Threat Index of November 2020. Microsoft fixes new Windows Kerberos security bug in staged rollout. Russian hackers exploit vulnerability in VMware Workspace ONE. Continue readingGlobal cybercrime losses cross $1 trillion mark, Hackers steal FireEye Red Team tools, and more

Categories
APT Breach Bug CVE Cyber Security Data leak Hacking Malware MiTM Phishing Ransomware Scam Vulnerability

Foreign govt. hackers break into FireEye, Unpatched MiTM vulnerability affects all Kubernetes versions, and more

Major cybersecurity events on 9th December 2020 (Morning Post): Kalispell Regional Healthcare proposes $4.2m data breach settlement. Ransomware forces hosting provider Netgain to take down data centers. Microsoft releases Windows update to fix 58 newly discovered security flaws.Continue readingForeign govt. hackers break into FireEye, Unpatched MiTM vulnerability affects all Kubernetes versions, and more

Categories
APT Botnet Breach Bug CVE Cyber Security Data leak Emotet Hacking Malware Phishing Ransomware Scam Trojan Vulnerability Zero-day

12% ICS security incidents by nation-state actors, Ransomware gangs return, target healthcare, and more

Major cybersecurity events on 3rd November 2020 (Evening Post): Emotet soars over 1200% between Q2 and Q3 of this year, warns HP Inc. FireEye releases ThreatPursuit pre-configured virtual machine, to help threat intelligence analysts hunt down adversaries. Russian hacker jailed for $100M botnet fraudulent scheme.Continue reading12% ICS security incidents by nation-state actors, Ransomware gangs return, target healthcare, and more