Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Malware MiTM Phishing Ransomware Snooping Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 10th March 2020

Round Up of Major Breaches and Scams Years-long campaign targets hackers through trojanized hacking tools Vietnam based threat group has been hacking other hackers through njRAT infected hacking tools. Instead of directly hacking systems, spreading trojanized hacking tools gives them complete access to a much larger pool of hacked data. These trojanized tools have been…Continue readingCloudSEK Daily Threat Bulletin – 10th March 2020

Categories
Cyber Security Ransomware TrickBot

CloudSEK Daily Threat Bulletin – 28th February 2020

Round Up of Major Breaches and Scams Error in official Walgreens app exposes users’ personal data An error in the official app of US pharmacy chain Walgreens allowed users to view other users’ names, prescriptions, store number, and shipping addresses. The company announced that for a week, an error in the app’s personal secure messaging…Continue readingCloudSEK Daily Threat Bulletin – 28th February 2020

Categories
Cyber Security Emotet Malware

CloudSEK Daily Threat Bulletin – 4th February 2020

Twitter announces that its API had been exploited to match usernames to phone numbers. While the fake accounts responsible for this have been suspended, the impact of this is still not known. Magecart targets Olympic tickets reseller’s payment platform to steal customer payment card numbers. And Apollon Market may be pulling off an exit scam,…Continue readingCloudSEK Daily Threat Bulletin – 4th February 2020