July 31, 2024 at 01:56PM CISA and the FBI assure that DDoS attacks on election infrastructure may hinder public access to information but won’t compromise the integrity or security of the 2024 U.S. general election. Official sources should be consulted for election-related info, and any suspicious activity should be reported to the FBI. Such attacks … Read more
July 31, 2024 at 02:01AM A cyber-espionage group linked to India, known as SideWinder, has expanded its targeting to compromise computers and networks at maritime facilities in countries including those around the Mediterranean Sea. The group uses spear-phishing with fake documents and exploits older vulnerabilities. The attacks aim at intelligence-gathering and cyber espionage in regions … Read more
July 24, 2024 at 01:36PM KnowBe4 hired a North Korean state actor posing as a Principal Software Engineer. The company stopped the attempted installation of information-stealing software. The actor evaded background checks and used AI tools to create a fake identity. KnowBe4 detected the threat through its security product and now recommends isolating new hires’ … Read more
July 24, 2024 at 06:48AM The notorious BreachForums v1 hacking forum’s entire database was released on Telegram, exposing members’ info, private messages, cryptocurrency addresses, and every post. The data was sold by Conor Fitzpatrick and has been circulating among threat actors. This reveals a vulnerability test for involved threat actors and may lead to identifying … Read more
July 15, 2024 at 10:06AM Over 310GB of data from spyware maker mSpy, including 2.4 million unique emails, was leaked online and obtained by data breach notification site Have I Been Pwned. The leaked data includes user information, attachments, and support tickets from high-profile individuals. mSpy, advertised as a parental control application, has been misused … Read more
July 11, 2024 at 03:28PM Over 2.3 million people are to receive letters due to a data breach at Advance Auto Parts. The breach compromised personal information of job applicants and employees, including names, Social Security numbers, and more. Unauthorized access to the company’s cloud environment was discovered and reported to law enforcement. Credit monitoring … Read more
July 10, 2024 at 06:39AM A widespread fraud campaign, known as Ticket Heist, is targeting Russian-speaking users interested in purchasing tickets for the Summer Olympics in Paris. The operation offers overpriced fake tickets to sporting events and music concerts, using convincing websites to deceive victims. The scheme aims to steal money from victims by employing … Read more
July 9, 2024 at 12:43PM Eldorado, a Go-based ransomware, targets Windows and VMware ESXi systems in the US across education, real estate, and healthcare. It offers an affiliate program, customizable attack techniques, and employs Golang for cross-platform capabilities. Its “living off the land” tactics make it evasive, while its ability to impact virtual machines poses … Read more
July 8, 2024 at 11:17AM CloudSorcerer, a new APT group discovered by Kaspersky, uses custom malware to steal data from Russian government organizations via cloud services. The malware’s behavior varies based on its injection point within the system, allowing it to collect data and execute commands. Kaspersky characterizes the attacks as highly sophisticated, with IoC … Read more
June 24, 2024 at 09:57AM The US Department of Justice has filed charges against four Vietnamese individuals for cyberattacks that resulted in over $71 million in damages to US companies. The defendants, believed to be part of the cybercrime group FIN9, utilized phishing and other methods to compromise victim networks and steal private information and … Read more