Categories
Breach CVE Cyber Security Vulnerability

Hacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more

Major cybersecurity events on 10th June 2020 (Evening Post): Misconfigured S3 bucket that has Magecart, malicious redirector code, compromised. Fake SpaceX YouTube channels scam viewers out of $150K in bitcoin. Adobe and Intel patches vulnerabilities.Continue readingHacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more

Categories
APT Breach CVE Cyber Security Ransomware Spearphishing Vulnerability

YouTube credentials on high demand on hacker forums, Covve exposes 69M peoples’ personal data including Troy Hunt’s, and more

Major cybersecurity events on 4th June 2020 (Evening Post): Hackers steal secrets from US nuclear missile contractor. Coincheck’s domains hijacked for spearphishing attacks. Following George Floyd’s murder hackers jam Chicago Police emergency radio systems.Continue readingYouTube credentials on high demand on hacker forums, Covve exposes 69M peoples’ personal data including Troy Hunt’s, and more

Categories
Breach Cyber Security Malware Phishing Ransomware RAT Stalkerware TrickBot Trojan Vulnerability

Magellan Health suffers ransomware attack, Hackers steal 756GB data of Celebrities, Stealthy Astaroth hides command servers in YouTube, and more

Major cybersecurity events on 12th May 2020: 4000 Android apps that use Google’s Firebase expose users’ data. Credit card stealers, MageCart infect 1236 websites. Google removes over 800 creepware apps from Play Store. US exposes campaigns by North Korean hacker group, HIDDEN COBRA.Continue readingMagellan Health suffers ransomware attack, Hackers steal 756GB data of Celebrities, Stealthy Astaroth hides command servers in YouTube, and more

Categories
APT Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Zeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphinx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020

Categories
Emotet Malware Phishing Rougeware

CloudSEK Daily Threat Bulletin – 5th February 2020

From charity organizations to government entities, just in the last few days, we have seen the impact of attacks on, 12 Indian government entities, the city of Racine, a voter registration website, and the Red Kite Community Housing charity. With Emotet finding a new carrier in W-9 tax forms, it is more obvious than ever…Continue readingCloudSEK Daily Threat Bulletin – 5th February 2020