Threatpost | The first stop for security news

Twitter Whistleblower Complaint: The TL;DR Version

By Threatpost — August 24^th 2022 at 14:17

Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk.

Threatpost | The first stop for security news

APT Lazarus Targets Engineers with macOS Malware

By Elizabeth Montalbano — August 17^th 2022 at 15:07

The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.

Threatpost | The first stop for security news

Black Hat and DEF CON Roundup

By Threatpost — August 15^th 2022 at 13:56

‘Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.

Threatpost | The first stop for security news

Messaging Apps Tapped as Platform for Cybercriminal Activity

By Elizabeth Montalbano — July 27^th 2022 at 16:57

Built-in Telegram and Discord services are fertile ground for storing stolen data, hosting malware and using bots for nefarious purposes.

Threatpost | The first stop for security news

Emerging H0lyGh0st Ransomware Tied to North Korea

By Elizabeth Montalbano — July 15^th 2022 at 16:26

Microsoft has linked a threat that emerged in June 2021 and targets small-to-mid-sized businesses to state-sponsored actors tracked as DEV-0530.

Threatpost | The first stop for security news

Journalists Emerge as Favored Attack Target for APTs

By Elizabeth Montalbano — July 14^th 2022 at 15:08

Since 2021, various state-aligned threat groups have turned up their targeting of journalists to siphon data and credentials and also track them.

Threatpost | The first stop for security news

U.S. Healthcare Orgs Targeted with Maui Ransomware

By Elizabeth Montalbano — July 8^th 2022 at 10:46

State-sponsored actors are deploying the unique malware--which targets specific files and leaves no ransomware note--in ongoing attacks.

Threatpost | The first stop for security news

Latest Cyberattack Against Iran Part of Ongoing Campaign

By Nate Nelson — July 5^th 2022 at 12:35

Iran's steel manufacturing industry is victim to ongoing cyberattacks that previously impacted the country's rail system.

Threatpost | The first stop for security news

‘Killnet’ Adversary Pummels Lithuania with DDoS Attacks Over Blockade

By Elizabeth Montalbano — June 28^th 2022 at 12:17

Cyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad.

Threatpost | The first stop for security news

Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug

By Elizabeth Montalbano — June 23^rd 2022 at 12:21

The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers.

Threatpost | The first stop for security news

Elusive ToddyCat APT Targets Microsoft Exchange Servers

By Sagar Tiwari — June 22^nd 2022 at 12:18

The threat actor targets institutions and companies in Europe and Asia.

Threatpost | The first stop for security news

China-linked APT Flew Under Radar for Decade

By Nate Nelson — June 17^th 2022 at 13:34

Evidence suggests that a just-discovered APT has been active since 2013.

Threatpost | The first stop for security news

State-Sponsored Phishing Attack Targeted Israeli Military Officials

By Nate Nelson — June 16^th 2022 at 11:59

Analysts have uncovered an Iran-linked APT sending malicious emails to top Israeli government officials.

Threatpost | The first stop for security news

DragonForce Gang Unleash Hacks Against Govt. of India

By Nate Nelson — June 15^th 2022 at 13:59

In response to a comment about the Prophet Mohammed, a hacktivist group in Malaysia has unleashed a wave of cyber attacks in India.