March 25, 2024 at 02:13PM The Top.gg Discord bot community, with over 170,000 members, has been targeted by a supply-chain attack aiming to deliver malware for data theft and monetization. The attacker used various tactics, including hijacking GitHub accounts and distributing malicious Python packages. This campaign compromised user data from various platforms, highlighting the risks … Read more
March 25, 2024 at 02:06PM A supply-chain attack has targeted the Top.gg Discord bot community of over 170,000 members, aiming to distribute malware for data theft and monetization. An attacker used various tactics, including hijacking accounts and creating fake Python packages, leading to compromised systems and data theft. This underscores the risks in the open-source … Read more
March 20, 2024 at 07:19AM Russian government is using fake emails to impersonate other governments in order to steal strategic intelligence. Based on the meeting notes, it is clear that Russia’s government is engaged in email impersonation with the goal of stealing strategic intelligence. This poses a significant security threat and should be addressed with … Read more
March 20, 2024 at 06:24AM Cybersecurity researchers have identified the advanced BunnyLoader 3.0 malware, capable of stealing information and cryptocurrency, while delivering additional malware to victims. The malware, developed by Player, has seen frequent updates aimed at evading detection and expanding its functionalities. It is part of the evolving landscape of malware-as-a-service. Based on the … Read more
March 14, 2024 at 10:09AM Change Healthcare is under investigation for an alleged 6 TB data theft by the ALPHV ransomware group. The US Department of Health and Human Services is initiating a formal inquiry into the cyberattack’s impact on healthcare facilities. Change Healthcare is slowly restoring services after the attack, facing lawsuits and forensic … Read more
March 13, 2024 at 07:46AM Russian-Canadian cybercriminal Mikhail Vasiliev sentenced to 4 years in prison by Ontario court for involvement in LockBit ransomware gang, with restitution of $860,000 to Canadian victims and potential extradition to the U.S. LockBit, a ransomware-as-a-service operation, has faced disruption by law enforcement, but despite relaunching, analysis suggests its activities are … Read more
March 12, 2024 at 06:48PM Ex-Meta VP sued for allegedly stealing confidential documents to aid a new AI cloud startup. During his 12-year tenure, Dipinder Singh Khurana rose to VP of infrastructure before leaving for a stealth-mode startup. Meta accuses him of taking sensitive data and luring employees to his new employer, resulting in multiple … Read more
March 12, 2024 at 03:37PM Acer Philippines confirmed a data breach by a third-party vendor, leading to leaked employee data on a hacking forum. The company stated no direct breach of its systems and reassured no customer data was affected. Acer is working with cybersecurity experts and law enforcement in response to the incident. Multiple … Read more
March 7, 2024 at 10:00AM Former Google software engineer Linwei (Leon) Ding, 38, was indicted by the U.S. Department of Justice for allegedly stealing proprietary information on Google’s AI technologies and transferring it to Chinese companies. Ding covertly uploaded over 500 files to his personal Google Cloud account and concealed his actions by lying and … Read more
March 5, 2024 at 08:15AM Cybercriminals are conducting widespread attacks across the Middle East, Africa, and Asia using the new GhostLocker 2.0 ransomware. Affected organizations include technology companies, universities, manufacturing, transportation, and government organizations. The attackers demand payment for decryption keys and threaten to release stolen data if their demands are not met. Cisco Talos … Read more