February 27, 2024 at 07:41PM Cencora, a pharmaceutical giant, revealed that threat actors stole data from its IT systems in a recent cyberattack. The company, previously known as AmerisourceBergen, focuses on pharmaceutical services and employs approximately 46,000 people. They are working with law enforcement and cybersecurity experts to investigate the incident, which is not expected … Read more
February 21, 2024 at 12:21AM The IBM X-Force report indicates a decrease in ransomware with a rise in infostealing, cloud service attacks, and critical infrastructure targeting. It details evolving criminal tactics, geopolitical effects, and the looming AI threat. The report also emphasizes the need for cybersecurity preparedness, particularly in securing AI/ML open source software. The … Read more
February 9, 2024 at 04:09PM Ransomware payments soared in 2023, doubling compared to the previous year, exceeding $1 billion. Chainalysis found a total of $1.1 billion in cryptocurrency wallets used by cybercriminals to receive payments, a significant increase from $557 million in 2022. The report also highlighted an increase in ransomware attacks and the laundering … Read more
February 8, 2024 at 11:08PM Singapore-based cyber security firm Group-IB uncovered a group, dubbed “ResumeLooters,” operating across Asia, stealing sensitive data using SQL injection and XSS attacks. The victims were mainly job search websites and e-commerce companies in Asia, with evidence showing the attacks beginning as early as January 2023. The attackers attempted to gain … Read more
February 7, 2024 at 04:29PM Ov3r_Stealer, a new password-stealing malware, spreads through fake job ads on Facebook, leading victims to a Discord URL where a PowerShell script downloads the malware payload. It employs various techniques like malicious file execution, HTML smuggling, and DLL sideloading to establish persistence and steal data every 90 minutes, sending it … Read more
January 25, 2024 at 07:08PM Former Trickbot developer Vladimir Dunaev from Russia sentenced to five years and four months in the US for infecting American hospitals and businesses with ransomware and other malware, causing millions in losses. He provided specialized services for the criminal gang, including recruiting coders, managing servers, and developing browser modifications to … Read more
January 23, 2024 at 08:44AM The Australian government has announced sanctions against Russian national Aleksandr Gennadievich Ermakov for his involvement in the 2022 Medibank hack and ties to the REvil ransomware group. Ermakov was found responsible for stealing personal data from Medibank and is now restricted from operating freely under international scrutiny. Sanctions aim to … Read more
January 18, 2024 at 06:12AM In 2024, the cybersecurity landscape faces evolving challenges, particularly from ransomware. Cybercriminals are adopting a new strategy of data theft and extortion, bypassing traditional encryption-based attacks. Encrypted data offers legal protection in the event of a breach, but widespread encryption deployment lags. Proactive security management and asset enumeration are critical … Read more
January 11, 2024 at 01:44PM Job scammers are targeting Facebook users with fake work-from-home offers to steal personal data and banking details. The attackers impersonate legitimate recruiters and entice victims to install chat apps. Once engaged, they request personal information and credentials. To avoid falling victim, job seekers are advised to verify offers directly with … Read more
January 10, 2024 at 08:03PM French hacker Sebastien Raoult, a member of the ShinyHunters gang, was jailed in the US for creating fake login pages to steal personal and financial data from millions. The 22-year-old was motivated by greed and pleaded guilty to conspiracy to commit wire fraud and identity theft. He received a three-year … Read more