Categories
APT Breach Cyber Security DDoS Emotet Malware Phishing Ransomware RAT Spearphishing Trojan Vulnerability

NameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Major cybersecurity events on 3rd April 2020: Domain names are leveraged to lure victims in the name of Coronavirus, NameCheap hosts one such domain. hacking forum OGUsers gets hacked again. Self-replicating Emotet infects Microsoft client’s entire network. Researcher hacks iOS, macOS camera vulnerabilities, Apple awards $75,000.Continue readingNameCheap facilitates fake domains, Crimson RAT targets Indian Financial sector, Spearphishing spreads LokiBot, and more

Categories
APT Breach CVE Cyber Security Malware Phishing Spyware Vulnerability

Twitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more

Categories
Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability Watering Holes

Marriott breached, Kwampirs targets healthcare sector, LimeRAT campaign, and more

Major cybersecurity events on 31st March 2020: Watering holes attacks target Asians, uses Flash updates. Vulnerability in WordPress allows administrative access to users. Saudi Arabia secretly tracks its citizens. Zoom client leaks credentials to attackers. Data breach impacts 5.2Mn Marriott hotel guests. LimeRAT installs a range of malware strains.Continue readingMarriott breached, Kwampirs targets healthcare sector, LimeRAT campaign, and more

Categories
Breach CVE Malware Trojan Vulnerability

Canon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Major cybersecurity events on 25th March 2020: GE employees’ Canon mail accounts hacked. Fake payment form on Tupperware site used to steal credit card details. Hacked news sites delivers backdoor malware disguised as Google updates. Microsoft’s new update fixes Windows Defender.Continue readingCanon breached, Tupperware, news sites hacked, Citrix, Cisco hit, and more

Categories
APT Breach Malware Ransomware RAT RCE TrickBot Vulnerability

Stealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Major cybersecurity events on 24th March 2020: A new, stealthier Astaroth strikes Windows 10. COVID-19 cyberattacks against WHO spikes. 56 Google Play Store apps infected with malicious software. Kaspersky detects new APT campaign. TrickBot malware operators release TickMo to bypass 2FA. Azure applications can be weaponized against Microsoft365.Continue readingStealthier Astaroth, TrickMo bypasses 2FA, Espionage targets WHO, and more

Categories
Breach CVE Malware Phishing Ransomware Trojan Vulnerability

GE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Major cybersecurity events on 23rd March 2020: PII of GE employees exposed. Hackers spread malware through Coronavirus safety app, gains Contacts access to infect more. Coronavirus phishing spreads Netwalker ransomware. Tesla central touchscreen exposed to DoS attacks. Botnet operators exploit vulnerabilities in LILIN DVRs.Continue readingGE data breach, Coronavirus phishing, Vulnerable LILIN, Tesla, Windows, and more

Categories
APT Breach Cyber Security Ransomware SIM swapping Spearphishing Spyware Trojan Vulnerability

CloudSEK Daily Threat Bulletin – 13th March 2020

Round Up of Major Breaches and Scams Czech Republic’s second-biggest hospital is hit by cyberattack A large Czech Republic hospital responsible for running tests for the novel coronavirus said Friday that a cyberattack had hit its computer systems. It was not immediately clear how, if at all, the hack would affect University Hospital Brno’s ability to test for…Continue readingCloudSEK Daily Threat Bulletin – 13th March 2020

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020

Categories
APT Breach Malware Phishing Ransomware Ryuk Vulnerability

CloudSEK Daily Threat Bulletin – 9th March 2020

Round Up of Major Breaches and Scams Phishing campaign uses chatbot that pretends to be a customer service agent In a new phishing campaign, a chatbot pretends to be a customer service agent, helping Russian victims to get a refund of $2,100, for unused internet and cellular services. This lures victims to fill several forms,…Continue readingCloudSEK Daily Threat Bulletin – 9th March 2020

Categories
Breach CVE Malware Ransomware TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 6th March 2020

Round Up of Major Breaches and Scams Brazilian security firm exposes 25 GB of data on leaky S3 bucket A Brazilian home and business security firm has exposed 25 GB of files on a leaky S3 bucket. The files, which include tax documents, payment slips, and social security documents, reveal their clients’ contract details and…Continue readingCloudSEK Daily Threat Bulletin – 6th March 2020