January 4, 2024 at 04:06AM The UAC-0050 threat actor is using phishing attacks to distribute the Remcos RAT, employing new tactics to avoid detection by security software. Uptycs researchers highlight the group’s use of a pipe method for interprocess communication, demonstrating advanced adaptability. The group has a history of targeting Ukrainian and Polish entities through … Read more
January 3, 2024 at 03:05PM LastPass is strengthening customer password requirements, mandating a minimum 12-character master password for enhanced security, prompted by advancements in password cracking and user behavior. The rollout will start with email notifications to customers, along with additional measures such as multi-factor re-enrollment. The changes aim to mitigate security incidents and breaches. … Read more
January 3, 2024 at 11:51AM SRLabs released the Black Basta Buster tool to decrypt files encrypted by a specific strain of the Black Basta ransomware, with limitations on encryption logic and file size. The decryptor can recover files between 5,000 bytes and 1GB, but larger files may lose the first 5,000 bytes. It exploits a … Read more
January 2, 2024 at 11:25AM The court system of Victoria, Australia, faced a suspected ransomware attack, potentially compromising audiovisual recordings of court hearings. The incident affected different courts to varying extents, with concerns over sensitive case information leaks. Court Services Victoria is working with authorities and impacted parties, and ongoing efforts include system restoration and … Read more
January 2, 2024 at 10:57AM In 2024, companies will face significant challenges in data security, protection, and compliance. Governments are tightening regulations and enforcing data protection laws, impacting companies globally. The rush to regulate AI and the complexities of data localization pose additional challenges. Businesses need to adapt to evolving regulations and technological landscapes to … Read more
December 28, 2023 at 12:12PM Palo Alto Networks has completed the acquisition of Israeli startup Talon Cyber Security, known for its secure browser technology. The deal valued at $625 million aims to integrate Talon’s technology into Palo Alto’s suite to enhance security for both managed and unmanaged devices. The move aligns with Palo Alto’s zero-trust … Read more
December 26, 2023 at 02:33AM Cybersecurity firm NCC Group reported that the Carbanak banking malware has been updated to launch ransomware attacks using new tactics and distribution methods, including impersonating business-related software. The attacks have increased, with over 4,000 cases reported in 2023, targeting various sectors globally. Key ransomware families include LockBit, BlackCat, and Play. … Read more
December 22, 2023 at 01:18PM French video game publisher Ubisoft is investigating a potential breach after images of its internal software and developer tools were leaked online. Security research collective VX-Underground shared screenshots suggesting unauthorized access to Ubisoft’s internal services. The threat actor claimed to have accessed various platforms and attempted to steal user data … Read more
December 22, 2023 at 01:11PM Ubisoft is investigating a potential breach after images of internal software and developer tools surfaced online. VX-Underground claims an unknown threat actor breached Ubisoft and intended to exfiltrate around 900GB of data. This alleged breach involves access to various services, including MongoDB Atlas. Ubisoft is currently investigating the incident. Based … Read more
December 21, 2023 at 10:44AM BidenCash, a stolen credit card marketplace, is offering 1.9 million credit cards for free to gain popularity among cybercriminals. The platform has gained notoriety by occasionally releasing free dumps, but previous data has been found to contain duplicates and expired cards. Users of leaked valid cards are at risk of … Read more