Germany sinkholes BadBox malware pre-loaded on Android devices

December 13, 2024 at 10:22AM Germany’s Federal Office for Information Security (BSI) has successfully disrupted the BadBox malware operation, which was pre-loaded in more than 30,000 Android IoT devices sold in the country. This action aims to enhance cybersecurity for affected devices and protect users from potential threats. **Meeting Takeaways:** 1. **Disruption of BadBox Malware**: … Read more

27 DDoS Attack Services Taken Down by Law Enforcement

December 12, 2024 at 07:21AM An international law enforcement operation, Operation PowerOff, successfully dismantled 27 DDoS-for-hire websites and arrested three suspects in France and Germany. Coordinated by Europol, the operation identified over 300 users and aimed to curb disruptive DDoS attacks, especially during the holiday season, which cause significant financial and operational harm. ### Meeting … Read more

About the security content of macOS Ventura 13.7.2 – Apple Support

December 11, 2024 at 01:33PM On December 11, 2024, Apple is releasing updates for macOS Ventura 13.7.2, addressing various vulnerabilities (CVE-2024-54477, CVE-2024-54527, etc.) that could allow apps to access sensitive data or execute arbitrary code. Improved checks and validations were implemented for better security measures. ### Meeting Takeaways #### Release Details: – **Apple ID**: 121842 … Read more

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

December 10, 2024 at 09:48AM Cybersecurity researchers have uncovered a mobile phishing campaign distributing an updated Antidot banking trojan, luring victims through fake job offers. Attackers prompt downloads of malicious apps, enabling extensive device control and data theft. Targeting multilingual users, the advanced malware requires robust protection measures to prevent significant data loss and financial … Read more

Microsoft Takes Action Against Phishing-as-a-Service Platform

November 21, 2024 at 05:43PM Microsoft seized 240 domains linked to ONNX, a phishing-as-a-service platform targeting companies and individuals since 2017. ONNX was the leading player in middle (AitM) phishing, promoting phishing kits on Telegram. Microsoft’s legal action aims to disrupt ONNX’s operations, though other threat providers may emerge. ### Meeting Takeaways 1. **Domain Seizure**: … Read more

Google Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto Schemes

November 14, 2024 at 09:58AM Google has reported increasing scams where fraudsters use landing page cloaking to impersonate legitimate sites, manipulating users into purchasing counterfeit products. Techniques include AI-generated deepfakes and cloning legitimate apps. Google has taken action by blocking billions of scam ads and enhancing user protection through new detection features in Android apps. … Read more

THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 04 – Nov 10)

November 11, 2024 at 07:30AM In 2024, hackers exploit trusted cybersecurity tools, posing significant threats to banks and critical systems. A major FBI investigation targets China-linked cyberattacks using custom malware. New vulnerabilities and malware, including ToxicPanda and VEILDrive, are emerging, highlighting the need for urgent updates and enhanced security measures to safeguard against sophisticated threats. … Read more

‘SteelFox’ Miner and Information Stealer Bundle Emerges

November 7, 2024 at 07:59AM The SteelFox crimeware bundle masquerades as legitimate software like Foxit PDF Editor and AutoCAD to steal user information. This emerging threat poses significant risks to users seeking these applications. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **Threat Overview**: The SteelFox crimeware bundle impersonates legitimate software, specifically Foxit PDF … Read more

Fake Copyright Infringement Emails Spread Rhadamanthys

November 6, 2024 at 05:56PM Check Point Research has tracked a spear-phishing campaign, “CopyR(ight)hadamantys,” targeting hundreds of companies globally with emails claiming copyright infringement. The emails deliver the sophisticated infostealer Rhadamanthys, capable of stealing sensitive data. Attackers use automation to send these messages, often impersonating known brands in technology and entertainment industries. ### Key Takeaways … Read more

Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign

November 4, 2024 at 04:01AM Barracuda has identified a widespread phishing campaign impersonating OpenAI, aiming to steal ChatGPT credentials from businesses globally. This large-scale effort poses significant security risks as it targets various organizations. **Meeting Takeaways:** 1. **Observation of Campaign**: Barracuda has identified a significant impersonation campaign targeting OpenAI. 2. **Objective of the Campaign**: The … Read more