September 19, 2024 at 08:36AM Microsoft warns of the INC ransomware used by threat actor Vanilla Tempest to target US healthcare organizations. The attacker leverages Gootloader malware to expand network access, utilizing tools like AnyDesk, MEGA, RDP, and WMI Provider Host to execute the ransomware payload. They have been active for at least two years … Read more
September 17, 2024 at 10:43PM Australian Federal Police (AFP) apprehended a man for creating the Ghost app, a platform for criminal activities. Sold with a modified smartphone for approximately AU$2350, it allowed encrypted communication for illicit dealings. The AFP infiltrated Ghost and conducted raids, arresting 38 individuals, seizing weapons and drugs, and preventing numerous acts … Read more
September 17, 2024 at 12:55PM Ransomware group Rhysida claims to have stolen over 3 TB of data from Port of Seattle, including personal information, and is auctioning it for 100 Bitcoin. The Port confirmed the ransomware attack and its refusal to pay the ransom. While services are being restored, the timeline for full recovery remains … Read more
September 16, 2024 at 08:19AM Cybercriminal Remy Ra St Felix and his gang were sentenced for a string of violent cryptocurrency robberies in the US. St Felix received a 47-year prison term and five years supervised release and was ordered to pay over $524 million in restitution. The gang targeted victims, held them at gunpoint, … Read more
September 12, 2024 at 07:18AM In its Q2 2024 SASE Threat Report, Cato CTRL revealed critical insights from analyzing 1.38 trillion network flows. Notable findings include the identification of IntelBroker as a major threat actor, 66% of brand spoofing targeting Amazon, and the continued exploitation of Log4j and Oracle WebLogic vulnerabilities. Security recommendations from the … Read more
September 11, 2024 at 02:47PM The Meow ransomware group has gained momentum, claiming the second most active gang spot in global ransomware attacks. The group has shifted its focus from encrypting files to selling stolen data, adopting a new tactic in the cybercrime landscape. Meanwhile, RansomHub continues to dominate the rankings with 15 percent of … Read more
September 11, 2024 at 02:03PM Hunters International ransomware gang claims to have stolen 5.2 million files from the London branch of the Chinese state-owned bank ICBC and set a deadline of September 13 for their release. ICBC has not responded, and the authenticity of the stolen information remains unconfirmed. Financially motivated criminals target banks due … Read more
September 11, 2024 at 12:00PM A new campaign known as DragonRank, linked to a Chinese-speaking actor, is orchestrating black hat SEO attacks across Asia and Europe. Exploiting web applications, the group deploys malware to manipulate search engine algorithms, boosting the ranking of targeted websites. The attacks span various industry sectors and deploy methods to drive … Read more
September 11, 2024 at 09:47AM Seven individuals, including six Chinese nationals and one Singaporean, were arrested in Singapore for their involvement in global cyber activities. The arrests were made during raids where electronic devices with hacking tools, stolen personal information, and cash and cryptocurrencies totaling $1,394,000 were seized. The individuals are suspected of being part … Read more
September 11, 2024 at 08:48AM On Sep 11, 2024, the Singapore Police Force arrested five Chinese nationals and one Singaporean man for illicit cyber activities. The suspects, aged 32-42, are linked to a “global syndicate.” Electronic devices, cash, and cryptocurrency were seized, and charges under the Computer Misuse Act 1993 have been filed. The SPF … Read more