Categories
Botnet Breach CVE Cyber Security Malware Ransomware RCE Trojan Vulnerability

Expiring SSL certificates affect smart appliances, Thanos’ weaponized research tools target Windows users, and more

Major cybersecurity events on 11th June 2020 (Morning Post): Indian firm Compsys invites law suits after registering hoax domains. Snake Ransomware hits Honda and Energy Co. Contract tracing apps on Google Play deployed to steal data. Voting tech used in 5 US states fatally flawed. Continue readingExpiring SSL certificates affect smart appliances, Thanos’ weaponized research tools target Windows users, and more

Categories
Breach CVE Cyber Security DDoS Ransomware Vulnerability

KingNull leaks 7600 Daniel’s Hosting websites, IoT flaws enable DoS attacks, privilege escalation, and more

Major cybersecurity events on 2nd June 2020 (Morning Post): Hacking collective Anonymous claims to leak personal information that are in fact old data. Hackers sell 80K credit card details, including CVVs, on the dark web. Over the year, ransomware demand grew 14 times. Continue readingKingNull leaks 7600 Daniel’s Hosting websites, IoT flaws enable DoS attacks, privilege escalation, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware Vulnerability

Mespinoza/Pysa ransomware, HawkEye, RedLine Malware

Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. [email protected] phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware

Categories
Breach CVE Malware MiTM Phishing Ransomware Stalkerware Vulnerability

COVID-19 malware and phishing scams, fake Google domains, and more

Major cyber security incidents on 17th March 2020: Scammers use COVID-19 as a guise to spread malware and phishing mails. APT36 calls coronavirus a ‘golden opportunity’ to distribute Crimson RAT. MacOS bundleware installer capable of much more than a normal installation software.Continue readingCOVID-19 malware and phishing scams, fake Google domains, and more

Categories
APT Breach Cyber Security Ransomware SIM swapping Spearphishing Spyware Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 13th March 2020

Round Up of Major Breaches and Scams Czech Republic’s second-biggest hospital is hit by cyberattack A large Czech Republic hospital responsible for running tests for the novel coronavirus said Friday that a cyberattack had hit its computer systems. It was not immediately clear how, if at all, the hack would affect University Hospital Brno’s ability to test for…Continue readingCloudSEK Daily Threat Bulletin – 13th March 2020