February 8, 2024 at 10:06AM Pakistan’s Economic Coordination Committee has approved Rs10 billion (US $36 million) cybersecurity funding for enhancing technical capabilities and defending against cyber threats, in response to repeated cyberattacks on the country’s networks. This follows a prior decision to allocate Rs5bn (US $18 million) from information technology to cybersecurity research, amidst reports … Read more
February 8, 2024 at 09:08AM Cybersecurity researcher and associate charged in California for allegedly defrauding a tech company (most likely Apple) of $2.5 million. They gained access to Apple’s systems via a third-party contractor, ordering gift cards and hardware and selling them to third parties. An unsealed court indictment points to the defendants’ involvement. The … Read more
January 12, 2024 at 05:13PM Ransomware gangs are targeting mortgage lenders, with recent attacks on loanDepot, Mr. Cooper, and title insurance companies. The Toronto Zoo and Tigo Business were also hit. In a positive turn, a Dutch police operation led to the arrest of a ransomware operator. The week also saw the discovery of new … Read more
January 12, 2024 at 09:18AM The emergence of Medusa ransomware, notorious for targeting various industries, has led to increased activity, including the launch of a data leak site. Victims are given options such as time extension or data deletion, each with a price tag. With a focus on multi-extortion and professional tactics, this highlights the … Read more
January 5, 2024 at 06:30AM The US Department of Energy is offering $70 million in funding through the All-Hazards Energy Resilience program for research in cybersecurity, physical threats, natural disasters, and extreme weather events. The DOE aims to enhance the resilience and security of the energy sector and will fund up to 25 projects, with … Read more
December 7, 2023 at 09:31AM Security experts found a previously undetected malware named Krasue, targeting Linux systems in Thai telecoms since 2021. Krasue includes seven rootkit variants, based on open-source code, to remain undetected and ensure persistent access, possibly through botnets. Its origin is unknown, but it shares similarities with XorDdos malware. Group-IB provided detection … Read more
November 17, 2023 at 06:33AM Toyota Financial Services Europe & Africa confirmed being targeted in a cyberattack by the ransomware group Medusa. Unauthorized activity was detected in a limited number of locations and systems were taken offline. The group is threatening to distribute stolen data unless an $8 million ransom is paid. The attack may … Read more
November 14, 2023 at 09:45PM Synopsys, Inc. has released the 2023 Software Vulnerability Snapshot report, which shows a decrease in vulnerabilities found in target applications. The report suggests that code reviews, automated testing, and continuous integration are helping to reduce programming errors. However, relying on a single security testing solution is no longer sufficient, and … Read more
November 13, 2023 at 12:12AM Cybersecurity researchers have identified a new version of a wiper malware called BiBi-Windows Wiper, which targets Windows systems. This variant is an expansion of the previous BiBi-Linux wiper used in cyber attacks against Israel during the recent Israel-Hamas war. The malware overwrites data in the C:\Users directory with junk data … Read more
October 10, 2023 at 09:54AM SecurityWeek will host the 2023 Industrial Control Systems (ICS) Cybersecurity Conference from October 23-26, 2023, in Atlanta. The event, now in its 22nd year, focuses on cybersecurity for industrial control systems and operational technology. The conference will feature over 75 sessions, including technical and strategy sessions, and will address various … Read more