Major cybersecurity events on 4th November 2020 (Morning Post): Toy maker Mattel suffers ransomware attack crippling business functions. REvil ransomware group adds KPOT malware to its arsenal, acquires source code of Trojan in auction. RegretLocker ransomware targets Windows VM.Continue readingSocial media firms on high alert against election misinformation, 1M Folkscam records leaked to Google, and more
Tag: Tor
Major cybersecurity events on 11th September 2020 (Evening Post): Companies based in India report more cyberattacks than any other country. US Criminal Court hit by Conti ransomware, expose critical data. Researchers report Chrome sandbox escape vulnerability, earns $20,000.Continue readingHackers slip into Donald Trump’s Twitter, Small business accounts cloned on Instagram, and more
Major cybersecurity events on 4th September 2020 (Morning Post): U.S. court rules that the NSA mass surveillance program exposed in 2013 was illegal and unconstitutional. Evilnum APT uses Python-based RAT PyVil in its recent attacks. 6,000 Roper St. Francis patients’ data compromised.Continue readingView Media leaks 39m user data via unsecured AWS S3 buckets, Microsoft launches deepfake detection tool, and more
Major cybersecurity events on 11th August 2020 (Morning Post): Phishing scams impersonate US SBA, deliver malware, steal credentials, commit financial fraud. Nefilim ransomware hacks the SPIE group, steal victim’s data. Avaddon ransomware launches data leak site to extort victims.Continue readingUS NCSC director warns of election interference efforts, Better Business Bureau notifies of new Visa scam, and more
Major cybersecurity events on 31st July 2020 (Morning Post): Twitter celebrity accounts hijacked after actors hooked staff with spearphishing tactics. Gujarat Technological University students complain about massive data leak following mock test. TrickBot Anchor malware targets Linux devices.Continue readingOffice 365 phishing targets Google Ads, Startups suffer data breach, 386M records leaks, and more
Major cybersecurity events on 6th July 2020 (Morning Post): Threat actors leverage Tor networks to carry out system compromise, data exfiltration, DoS attacks, reconnaissance. FakeSpy malware resurfaces, steals text messages, financial data, bank login information, app data, etc.Continue readingDelhi University data privacy breach, Try2Cry ransomware infects USB flash drives, spreads to Windows, and more
Major cybersecurity events on 2nd July 2020 (Evening Post): Federal Reserve issues advisory on how to mitigate payment fraud using synthetic identity accounts. Hakbit ransomware campaign targets specific European countries. FakeSpy campaign uses postal app to steal data. Continue readingAlina malware spotted using new trick to steal credit/debit card data, Hacker ransoms 22,900 MongoDB databases, and more
Round Up of Major Breaches and Scams ‘SurfingAttack’ allows attackers to remotely control voice-controlled devices A new omni-directional attack method called SurfingAttack, allows attackers to control voice-controlled devices from a distance, without the victim’s knowledge. Attackers can use voice commands to instruct voice assistants to reveal sensitive data such as SMS authentication codes for online…Continue readingCloudSEK Daily Threat Bulletin – 2nd March 2020