Categories
APT Breach Bug CVE Cyber Security Data leak Espionage Hacking Malware Phishing Ransomware Scam Spearphishing Vulnerability

Sensitive data of 2M CPC members exposed, Google outage affects Youtube, Gmail, Google services, and more

Major cybersecurity events on 14th December 2020 (Evening Post): Russian Hackers Steal Data for Months in SolarWinds global supply chain attacks. Microsoft partially fixes Windows 10 Conexant audio driver issues. Robotic Process Automation vendor UiPath discloses data breach.Continue readingSensitive data of 2M CPC members exposed, Google outage affects Youtube, Gmail, Google services, and more

Categories
Arbitrary Code Execution Breach Bug Credential Stuffing Cyber Security Data leak Fleeceware Hacking Malware Phishing Ransomware Scam Vulnerability

Minecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more

Major cybersecurity events on 13th November 2020 (Morning Post): Popular stock photo service, 123RF, suffers data breach after hacker sells database containing 8.3 million user records. YouTube, YouTube TV affected by a two-hour global outage. Ransomware threats increasingly target manufacturing companies.Continue readingMinecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more

Categories
APT Breach Bug CVE Cyber Security Data leak Hacking Malware Phishing Ransomware Scam SIM swapping Trojan Vishing Vulnerability Zero-day

Social media firms on high alert against election misinformation, 1M Folkscam records leaked to Google, and more

Major cybersecurity events on 4th November 2020 (Morning Post): Toy maker Mattel suffers ransomware attack crippling business functions. REvil ransomware group adds KPOT malware to its arsenal, acquires source code of Trojan in auction. RegretLocker ransomware targets Windows VM.Continue readingSocial media firms on high alert against election misinformation, 1M Folkscam records leaked to Google, and more

Categories
APT BEC Botnet Breach Bug CVE Cyber Security Data leak Emotet Hacking Malware Phishing Ransomware Ryuk Scam Vulnerability

REvil targets video games, claims massive revenue, Emotet uses parked domains to deliver malware, and more

Major cybersecurity events on 30th October 2020 (Morning Post): Mount Locker ransomware group leaks 18GB of leading security firm Gunnebo AB’s data. Brooklyn & Vermont hospitals are latest Ryuk ransomware victims. Threat actors continue to target Windows Zerologon flaw.Continue readingREvil targets video games, claims massive revenue, Emotet uses parked domains to deliver malware, and more

Categories
APT Breach CVE Cyber Security Data leak DDoS Hacking Malware Ransomware RAT Scam Vulnerability

Experian suffers data breach impacts 24m customers, Lucifer DDoS malware targets Linux systems, and more

Major cybersecurity events on 20th August 2020 (Morning Post): Data scraped from Instagram, TikTok and YouTube exposes 235 million social media profiles. Maze ransomware crew claims to have hacked SK hynix, leaks 5% of stolen files. Spotify fails to renew certificate, faces outage.Continue readingExperian suffers data breach impacts 24m customers, Lucifer DDoS malware targets Linux systems, and more

Categories
Breach CVE Cyber Security Vulnerability

Hacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more

Major cybersecurity events on 10th June 2020 (Evening Post): Misconfigured S3 bucket that has Magecart, malicious redirector code, compromised. Fake SpaceX YouTube channels scam viewers out of $150K in bitcoin. Adobe and Intel patches vulnerabilities.Continue readingHacker breaches 300,000 Nintendo accounts, Malicious Android apps bypass Google security scans, and more

Categories
APT Breach CVE Cyber Security Ransomware Spearphishing Vulnerability

YouTube credentials on high demand on hacker forums, Covve exposes 69M peoples’ personal data including Troy Hunt’s, and more

Major cybersecurity events on 4th June 2020 (Evening Post): Hackers steal secrets from US nuclear missile contractor. Coincheck’s domains hijacked for spearphishing attacks. Following George Floyd’s murder hackers jam Chicago Police emergency radio systems.Continue readingYouTube credentials on high demand on hacker forums, Covve exposes 69M peoples’ personal data including Troy Hunt’s, and more

Categories
Breach Cyber Security Malware Phishing Ransomware RAT Stalkerware TrickBot Trojan Vulnerability

Magellan Health suffers ransomware attack, Hackers steal 756GB data of Celebrities, Stealthy Astaroth hides command servers in YouTube, and more

Major cybersecurity events on 12th May 2020: 4000 Android apps that use Google’s Firebase expose users’ data. Credit card stealers, MageCart infect 1236 websites. Google removes over 800 creepware apps from Play Store. US exposes campaigns by North Korean hacker group, HIDDEN COBRA.Continue readingMagellan Health suffers ransomware attack, Hackers steal 756GB data of Celebrities, Stealthy Astaroth hides command servers in YouTube, and more

Categories
APT Breach Cyber Security Malware Phishing Ransomware Trojan Vulnerability

Zeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Major cybersecurity events on 30th March 2020: Zoom faces multiple attacks on video meetings. More than 4000 Android apps gather details of all the other installed apps. COVID-themed fraud sites and phishing emails circulate on the internet. Lexus, Toyota AVN systems exposed to attacks. Zeus Sphinx banking trojan fetches log-in details of unaware users.Continue readingZeus Sphinx returns, Android apps engage in grab data, Ponzi scheme on YouTube, and more

Categories
Breach CVE Malware Phishing TrickBot Vulnerability

CloudSEK Daily Threat Bulletin – 11th March 2020

Round Up of Major Breaches and Scams Iranian Coronavirus app collecting sensitive information Over the weekend, Iranian researcher, Nariman Gharib, reported via Twitter that he had identified a coronavirus app collecting sensitive information from users, including their real-time geo-location details, beyond what the app required to function. According to Gharib, the app was released by…Continue readingCloudSEK Daily Threat Bulletin – 11th March 2020