#DigitalSafety

New Winos 4.0 Malware Infects Gamers Through Malicious Game Optimization Apps

by

November 6, 2024 at 09:40AM Researchers alert that the Winos 4.0 malware, linked to gaming apps, allows extensive control over compromised systems. Originating from Gh0st RAT, it targets Chinese-speaking users through deceptive tactics. The malware executes a multi-stage infection process, harvesting sensitive data and facilitating backdoor access for further exploitation. **Meeting Takeaways: Cybersecurity Update on … Read more

INTERPOL Disrupts Over 22,000 Malicious Servers in Global Crackdown on Cybercrime

by

November 6, 2024 at 05:24AM INTERPOL’s Operation Synergia II successfully dismantled over 22,000 malicious servers globally from April to August 2024, targeting phishing and ransomware. Approximately 76% of 30,000 identified suspicious IPs were taken down, leading to 41 arrests. The operation included cooperation with private sector partners and significant discoveries in multiple countries. ### Meeting … Read more

DocuSign Abused to Deliver Fake Invoices

by

November 5, 2024 at 08:49AM Cybercriminals are exploiting DocuSign APIs to send fraudulent emails, including fake invoices, that evade spam and phishing filters. This highlights vulnerabilities in the platform, posing significant risks for users. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **Issue Identified**: Cybercriminals are exploiting DocuSign APIs. 2. **Method of Attack**: They … Read more

German Police Disrupt DDoS-for-Hire Platform dstat[.]cc; Suspects Arrested

by

November 4, 2024 at 07:39AM German authorities disrupted dstat[.]cc, a platform enabling simplified DDoS attacks for users with minimal technical skills. The Federal Criminal Police Office (BKA) highlighted its role in assessing attack capabilities. Two suspects, involved in drug trafficking via an online platform, were arrested. This action is part of the ongoing PowerOFF operation. … Read more

Public sector cyber break-ins: Our money, our lives, our right to know

by

November 4, 2024 at 05:34AM Transport for London experienced a significant cyber attack in September, exposing customer data and affecting ticketing systems. Initial claims of minimal damage were contradicted by customer complaints. The piece argues for greater transparency in public sector cybersecurity, suggesting the need for independent investigations to improve accountability and prevent future breaches. … Read more

Ex-Disney Worker Accused of Hacking Computer Menus to Add Profanities, Errors

by

November 2, 2024 at 06:21AM A former Disney employee allegedly hacked the company’s servers to manipulate menus by changing prices, adding profanities, and altering notifications. This incident highlights potential security vulnerabilities within the organization. **Meeting Notes Takeaways:** 1. **Incident Overview**: A former employee of Walt Disney World is accused of hacking into the servers. 2. … Read more

Facebook Businesses Targeted in Infostealer Phishing Campaign

by

October 31, 2024 at 05:17PM A phishing campaign targeting Facebook businesses in Taiwan uses deceptive emails impersonating legal teams and well-known companies to distribute malware. Threat actors demand immediate content removal under copyright claims, while employing techniques to bypass antivirus detection. Key malware includes Lumma Stealer and Rhadamanthys, which harvest sensitive information from victims. ### … Read more

New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics

by

October 31, 2024 at 11:21AM Researchers have identified an advanced iOS spyware, LightSpy, which enhances its capabilities and includes destructive functions that can render infected devices unbootable. First discovered in 2020, it captures sensitive data and utilizes various plugins. Suspected to be operated by Chinese attackers, it exploits known security vulnerabilities in Apple’s systems. ### … Read more

Norton Report Reveals Nearly Half of US Consumers Were Targeted by a Scam While Online Shopping

by

October 30, 2024 at 03:41PM A recent Norton report reveals that over 60% of Americans are preparing for online holiday shopping, but nearly half have faced scams. As concerns rise, Norton emphasizes the importance of taking proactive safety measures on Cyber Safety Sunday, December 1, to protect against increased online threats during the holiday season. … Read more

Malvertising Campaign Hijacks Facebook Accounts to Spread SYS01stealer Malware

by

October 30, 2024 at 10:03AM Cybersecurity researchers uncovered a malvertising campaign exploiting Meta’s platform, using hijacked Facebook accounts to spread SYS01stealer malware. The campaign targets users with deceptive ads, stealing login credentials and affecting Facebook business accounts. Additionally, phishing scams on Eventbrite and cryptocurrency job fraud are increasing, leveraging brand recognition for illicit gains. ### … Read more