Categories
Breach CVE Malware Phishing Ransomware Ryuk Vulnerability

Ransomware targets Chubb, Poisoned News campaign serves malware, and more

Major cybersecurity events on 26th March 2020: 4G networks vulnerable to DoS attacks. Hackers deliver Oski malware via Coronavirus apps. Palesa breaches AMD, demands money in exchange of files. Hackers target Italy and Spain amidst Coronavirus pandemic. Maze ransomware hits Chubb.Continue readingRansomware targets Chubb, Poisoned News campaign serves malware, and more

Categories
Breach CVE Malware Trojan Vulnerability

Canon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware Vulnerability

Mespinoza/Pysa ransomware, HawkEye, RedLine Malware

Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. Folding@home phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware

Categories
Breach CVE Malware MiTM Phishing Ransomware Stalkerware Vulnerability

COVID-19 malware and phishing scams, fake Google domains, and more

Major cyber security incidents on 17th March 2020: Scammers use COVID-19 as a guise to spread malware and phishing mails. APT36 calls coronavirus a ‘golden opportunity’ to distribute Crimson RAT. MacOS bundleware installer capable of much more than a normal installation software.Continue readingCOVID-19 malware and phishing scams, fake Google domains, and more

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020

Categories
Cyber Security Ransomware Vulnerability

CloudSEK Daily Threat Bulletin – 4th March 2020

Round Up of Major Breaches and Scams Tesco notifies Clubcard loyalty members of credential-stuffing attack U.K. supermarket chain Tesco has notified, 600,000 Clubcard loyalty program members, of a credential-stuffing attack. The attack came to light when Tesco’s internal systems detected attackers trying different combinations of usernames and passwords to access Clubcard accounts. The credentials are…Continue readingCloudSEK Daily Threat Bulletin – 4th March 2020

Categories
CVE Cyber Security Ransomware Vulnerability

CloudSEK Daily Threat Bulletin – 3rd March 2020

Round Up of Major Breaches and Scams Exaggerated Lion carries out BEC attacks by exploiting G Suite features Researchers have found that African threat group Exaggerated Lion carries out Business Email Compromise (BEC) attacks by exploiting G Suite features. Since G suite offers a 30-day trial period, and allows users to send 500 emails per…Continue readingCloudSEK Daily Threat Bulletin – 3rd March 2020

Categories
Cyber Security Malware Phishing Ransomware

CloudSEK Daily Threat Bulletin – 27th February 2020

Round Up of Major Breaches and Scams Phishing campaign uses fake NortonLifelock documents to distribute RAT Researchers have discovered a phishing campaign, which uses fake NortonLifelock documents, to bait users into installing a RAT (remote access tool). The password-enabled document contains a malicious macro, which is executed, once the document is enabled by the victim.…Continue readingCloudSEK Daily Threat Bulletin – 27th February 2020

Categories
CVE Cyber Security Emotet Malware Ransomware

CloudSEK Daily Threat Bulletin – 25th February 2020

Round Up of Major Breaches and Scams Threat group steals data by bypassing server firewall and masking C2 traffic What appears to be a state-sponsored threat group is using a technique called “Cloud Snooper” to bypass a server’s firewall to communicate with command and control (C2). The attackers deployed a rootkit that then installs a…Continue readingCloudSEK Daily Threat Bulletin – 25th February 2020

Categories
Cyber Security Malware Phishing

CloudSEK Daily Threat Bulletin – 21st February 2020

Round Up of Major Breaches and Scams 600 apps removed from Google Play Store for ad fraud Google has banned 600 apps from the Google Play Store, in an attempt to thwart ad fraud that tricks users into unintentionally clicking them. The Android apps, which were actively violating Google’s disruptive ads policy by displaying out-of-context…Continue readingCloudSEK Daily Threat Bulletin – 21st February 2020