Major cybersecurity events on 30th June 2020 (Evening Post): Hackers target Roblox gaming platform accounts in support of Donal Trump’s re-election. Unpatched Wi-Fi extender exposes domestic networks to remote control. Vulnerabilities in device drivers facilitate attacks on ATMs, PoS systems.Continue readingMore than 100K brute-force attacks target Windows, OneClass exposes 1M students’ data, and more
Tag: Intel
Major cybersecurity events on 15th June 2020 (Morning Post): Privnotes.com masquerades as privnote.com, phishes bitcoins. Twitter forbids users from retweeting articles they have not opened. ActionSpy targets minority group Uyghurs. Facebook aids FBI, captures child predator.Continue readingMicrosoft bans sale of facial recognition tech, Maze attacks Threadstone Advisors LLP, and more
Major cybersecurity events on 11th June 2020 (Evening Post): Healthcare provider Babylon suffers data breach. Alabama city decide to pay ransom after DoppelPaymer’s attack on 5 June. Thanos spreads to Windows users, evades security. Intel patches flaws in Active Management Technology.Continue readingOffice 365 phishing emails masquerades as relief payments, Fake Black Lives Matter campaign spreads Trickbot, and more
Major cybersecurity events on 10th June 2020 (Evening Post): Misconfigured S3 bucket that has Magecart, malicious redirector code, compromised. Fake SpaceX YouTube channels scam viewers out of $150K in bitcoin. Adobe and Intel patches vulnerabilities.Continue readingHacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more
Major cybersecurity events on 1st June 2020 (Morning Post): Denial-of-Service attacks target Minneapolis city systems. Highly critical ‘Sign in with Apple’ vulnerability patched, Apple rewards Indian researcher. Cisco patched vulnerabilities in SaltStack. Qatar’s contact tracing app exposes details of more than 1 million users.Continue readingWarning: VivaVideo operates as a spyware, Nworm quietly infects Windows, Himera, AbSent-Loader exploits COVID, and more
Major cybersecurity events on 11th May: WeLeakData.com breached, hackers’ chats leaked online. Sphynx malware re-emerges. Attackers pose as Zoom to steal Microsoft credentials. ATM maker Diebold Nixdorf hit by ransomware. Ransomware attacks target Pitney Bowes twice in 7 months.Continue readingAttempted theft of Coronavirus research, Dating app exposes 4M users data, Project STAMINA converts malware to images, and more
Major cybersecurity events on 14th April 2020: ‘Protag’ dumps 4 million Quidd user accounts on hacker forum. COVID-stricken Zaandam cruise ship breached. A potential cyberespionage campaign, Project Spy, infects Android, iOS devices with spyware. TA505 crime gang deploys SDBbot.Continue readingTikTok flaw allows attacks on user feed, Coronavirus app injects spyware, RagnarLocker targets EDP, and more
Major cybersecurity events on 16th March 2020: Scammers pull off coronavirus-related apps and phishing campaigns intending to take advantage of unsuspecting victims. COVID-19 testing center also hit by a ransomware attack, possibly. MonitorMinor: Parental control app or Stalkerware?Continue readingCoronavirus ransomware, MonitorMinor stalkerware, and more
Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020
Round Up of Major Breaches and Scams Years-long campaign targets hackers through trojanized hacking tools Vietnam based threat group has been hacking other hackers through njRAT infected hacking tools. Instead of directly hacking systems, spreading trojanized hacking tools gives them complete access to a much larger pool of hacked data. These trojanized tools have been…Continue readingCloudSEK Daily Threat Bulletin – 10th March 2020