Categories
APT Breach Cyber Security DDoS Emotet Malware Phishing Ransomware RAT Spearphishing Trojan Vulnerability

NameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Major cybersecurity events on 3rd April 2020: Domain names are leveraged to lure victims in the name of Coronavirus, NameCheap hosts one such domain. hacking forum OGUsers gets hacked again. Self-replicating Emotet infects Microsoft client’s entire network. Researcher hacks iOS, macOS camera vulnerabilities, Apple awards $75,000.Continue readingNameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Categories
APT Breach CVE Cyber Security Malware Phishing Spyware Vulnerability

Twitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Categories
Breach Cyber Security Malware Phishing RAT Vulnerability

Remcos RAT cloaked as SMB grants, Malicious USBs doing the rounds, Hacked Linksys routers, and more

Major cybersecurity events on 27th March 2020: Teleworking attracts brute-force attacks on Linksys routers. European companies targeted by hackers, suspected to be the Silence and TA505 groups. FBI warns of malicious USB drives delivered via USPS. Remcos RAT payloads target U.S. SBA.Continue readingRemcos RAT cloaked as SMB grants, Malicious USBs doing the rounds, Hacked Linksys routers, and more

Categories
Breach CVE Malware Trojan Vulnerability

Canon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE Malware Phishing Ransomware Trojan Vulnerability

GE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Categories
Breach CVE DDoS Malware Phishing Ransomware Vulnerability

Mespinoza/Pysa ransomware, HawkEye, RedLine Malware

Major cybersecurity events on 19th March 2020: Sodinokibi ransomware data leaks sold on hacker forums. DDoS attacks target Takeaway food delivery service. Phishing campaign sends out emails posing as WHO Chief to spread HawkEye malware. Folding@home phishing spreads RedLine.Continue readingMespinoza/Pysa ransomware, HawkEye, RedLine Malware

Categories
Breach CVE Cyber Security Malware Ransomware Snooping Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 12th March 2020

Round Up of Major Breaches and Scams Comcast accidentally published 200,000 “unlisted” phone numbers Comcast mistakenly published the names, phone numbers, and addresses of nearly 200,000 customers who paid monthly fees to make their numbers unlisted. The names and numbers were made available on Ecolisting, a directory run by Comcast, and picked up by third-party directories.…Continue readingCloudSEK Daily Threat Bulletin – 12th March 2020

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020

Categories
Malware MiTM Phishing Ransomware Snooping Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 10th March 2020

Round Up of Major Breaches and Scams Years-long campaign targets hackers through trojanized hacking tools Vietnam based threat group has been hacking other hackers through njRAT infected hacking tools. Instead of directly hacking systems, spreading trojanized hacking tools gives them complete access to a much larger pool of hacked data. These trojanized tools have been…Continue readingCloudSEK Daily Threat Bulletin – 10th March 2020