Recent Security News

  • Willis Lease Finance Corp Discloses Cyberattack

    February 13, 2024 at 09:57AM Aircraft parts dealer Willis Lease Finance Corporation (WLFC) reported a cyberattack to the US Securities and Exchange Commission, detected on January 31. The company contained the incident by February 2 and is investigating the scope and impact of the attack. The Black Basta ransomware gang claims responsibility and threatens to…

    Read More

  • Bank of America Customer Data Stolen in Data Breach

    February 13, 2024 at 09:57AM Bank of America notified 57,000 customers of a data breach at third-party provider Infosys McCamish System. The parent company, Infosys, disclosed the cyberattack on November 3, 2023, stating that customer data was exfiltrated. Bank of America informed customers of potential compromise of personal information and offered identity theft protection. The…

    Read More

  • JFK Airport Taxi Hackers Sentenced to Prison

    February 13, 2024 at 09:57AM Two US cab drivers, Daniel Abayev and Peter Leyman, have been sentenced to prison for their involvement in a hacking scheme targeting the taxi dispatch system at JFK Airport. They pleaded guilty to conspiracy to commit a computer intrusion and worked with two Russian nationals. The Russian hackers remain at…

    Read More

  • Glupteba Botnet Evades Detection with Undocumented UEFI Bootkit

    February 13, 2024 at 09:39AM Glupteba, a sophisticated information stealer and backdoor, has incorporated an undocumented UEFI bootkit feature, enhancing its stealth and persistence. The malware is capable of illicit cryptocurrency mining, proxy deployment, and various malicious activities. Distributed through complex infection chains, Glupteba demonstrates modern cybercriminals’ innovation, collaboration, and adaptation to evade detection. Based…

    Read More

  • PikaBot Resurfaces with Streamlined Code and Deceptive Tactics

    February 13, 2024 at 09:39AM The PikaBot malware has evolved with significant changes, simplifying its code and network communications, making it more accessible for threat actors. With ongoing development, it remains a significant cyber threat. Additionally, a cloud account takeover campaign targeting Microsoft Azure environments has compromised hundreds of user accounts. Source: Newsroom Cyber Threat/Malware.…

    Read More