FreshRSS

πŸ”’
β–³ πŸ”ƒ
☐ β˜† βœ‡ Threatpost | The first stop for security news

Watering Hole Attacks Push ScanBox Keylogger

By Nate Nelson β€” August 30th 2022 at 16:00
Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Ransomware Attacks are on the Rise

By Nate Nelson β€” August 26th 2022 at 16:44
Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Fake Reservation Links Prey on Weary Travelers

By Nate Nelson β€” August 22nd 2022 at 13:59
Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels.
☐ β˜† βœ‡ Threatpost | The first stop for security news

U.K. Water Supplier Hit with Clop Ransomware Attack

By Elizabeth Montalbano β€” August 16th 2022 at 14:30
The incident disrupted corporate IT systems at one company while attackers misidentified the victim in a post on its website that leaked stolen data.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Black Hat and DEF CON Roundup

By Threatpost β€” August 15th 2022 at 13:56
β€˜Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Feds: Zeppelin Ransomware Resurfaces with New Compromise, Encryption Tactics

By Elizabeth Montalbano β€” August 12th 2022 at 18:20
The CISA has seen a resurgence of the malware targeting a range of verticals and critical infrastructure organizations by exploiting RDP, firewall vulnerabilities.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Threat Actors Pivot Around Microsoft’s Macro-Blocking in Office

By Elizabeth Montalbano β€” July 28th 2022 at 17:24
Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwart a popular way to deliver malicious phishing payloads.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Messaging Apps Tapped as Platform for Cybercriminal Activity

By Elizabeth Montalbano β€” July 27th 2022 at 16:57
Built-in Telegram and Discord services are fertile ground for storing stolen data, hosting malware and using bots for nefarious purposes.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Novel Malware Hijacks Facebook Business Accounts

By Elizabeth Montalbano β€” July 26th 2022 at 18:15
Newly discovered malware linked to Vietnamese threat actors targets users through a LinkedIn phishing campaign to steal data and admin privileges for financial gain.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Conti’s Reign of Chaos: Costa Rica in the Crosshairs

By Aamir Lakhani β€” July 20th 2022 at 12:35
Aamir Lakhani, with FortiGuard Labs, answers the question; Why is the Conti ransomware gang targeting people and businesses in Costa Rica?
☐ β˜† βœ‡ Threatpost | The first stop for security news

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems

By Elizabeth Montalbano β€” July 20th 2022 at 12:14
300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuDrive, Harbortouch and InTouchPOS services.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Google Boots Multiple Malware-laced Android Apps from Marketplace

By Elizabeth Montalbano β€” July 18th 2022 at 12:32
Google removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Emerging H0lyGh0st Ransomware Tied to North Korea

By Elizabeth Montalbano β€” July 15th 2022 at 16:26
Microsoft has linked a threat that emerged in June 2021 and targets small-to-mid-sized businesses to state-sponsored actors tracked as DEV-0530.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Journalists Emerge as Favored Attack Target for APTs

By Elizabeth Montalbano β€” July 14th 2022 at 15:08
Since 2021, various state-aligned threat groups have turned up their targeting of journalists to siphon data and credentials and also track them.
☐ β˜† βœ‡ Threatpost | The first stop for security news

β€˜Callback’ Phishing Campaign Impersonates Security Firms

By Elizabeth Montalbano β€” July 12th 2022 at 11:43
Victims instructed to make a phone call that will direct them to a link for downloading malware.
☐ β˜† βœ‡ Threatpost | The first stop for security news

Sneaky Orbit Malware Backdoors Linux Devices

By Elizabeth Montalbano β€” July 8th 2022 at 14:45
The novel threat steals data and can affect all processes running on the OS, stealing information from different commands and utilities and then storing it on the affected machine.
☐ β˜† βœ‡ Threatpost | The first stop for security news

U.S. Healthcare Orgs Targeted with Maui Ransomware

By Elizabeth Montalbano β€” July 8th 2022 at 10:46
State-sponsored actors are deploying the unique malware--which targets specific files and leaves no ransomware note--in ongoing attacks.
❌