Pikabot Distributed Via Malicious Ads
During this past year, we have seen an increase in the use of malicious ads (malvertising) and specifically those via...
News
New Metastealer Malvertising Campaigns
MetaStealer is a popular piece of malware that came out in 2022, levering previous code base from RedLine. Stealers have...
Associated Press Espn Cbs Among Top Sites Serving Fake Virus Alerts
ScamClub is a threat actor who’s been involved in malvertising activities since 2018. Chances are you probably ran into one...
Malvertisers Zoom In On Cryptocurrencies And Initial Access
During the past month, we have observed an increase in the number of malicious ads on Google searches for “Zoom”,...
Ransomware Review December 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Xfinity Discloses Data Breach Affecting Over 35 Million People
Comcast Cable Communications, doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in...
Terrapin Attacks Can Downgrade Security Of Openssh Connections
Academic researchers developed a new attack called Terrapin that manipulates sequence numbers during the handshake process to breaks the SSH...
Interpol Operation Arrests 3 500 Cybercriminals Seizes 300 Million
An international law enforcement operation codenamed 'Operation HAECHI IV' has led to the arrest of 3,500 suspects of various lower-tier...
New Web Injections Campaign Steals Banking Data From 50 000 People
A new malware campaign that emerged in March 2023 used JavaScript web injections to try to steal the banking data...
Fbi Disrupts Blackcat Ransomware Operation Creates Decryption Tool
Update added below about the unseizing of the data leak site and a message from the ransomware gang. The Department...
How The Fbi Seized Blackcat Alphv Ransomwares Servers
An unsealed FBI search warrant revealed how law enforcement hijacked the ALPHV/BlackCat ransomware operations websites and seized the associated URLs....
Fbi Alphv Ransomware Raked In 300 Million From Over 1 000 Victims
The ALPHV/BlackCat ransomware gang has made over $300 million in ransom payments from more than 1,000 victims worldwide as of September 2023,...
Iranian Fuel Supplies Crippled By Cyber-Attack
Iran has blamed the US and Israel for a cyber-attack which it said caused widespread disruption to petrol stations on...
Impact of Log4Shell Bug Was Overblown, Say Researchers
Security researchers have claimed that a vulnerability described as the biggest and most critical ever discovered was far less dangerous...
Over 14 Million Mortgage Customers Hit By Mr Cooper Breach
One of the largest mortgage providers in the US has revealed that an October breach has impacted 14.7 million customers.Mr...
Law Enforcement Confirms BlackCat Take Down, Decryption Key Offered to Victims
The takedown of the ALPHV/BlackCat ransomware group’s leak site has been confirmed as a result of global law enforcement action.The...
Smishing Triad Targets UAE Residents in Identity Theft Campaign
Security researchers have observed a new fraudulent campaign orchestrated by the Smishing Triad gang and impersonating the United Arab Emirates...
More Than 26,000 Vulnerabilities Discovered in 2023
A total of 26,447 vulnerabilities were disclosed in 2023, surpassing the previous year by over 1500 CVEs.The figures come from...
Foreign Actors Targeted 2022 US Elections, Intelligence Community Reveals
The US intelligence community has confirmed it detected evidence of foreign interference during the 2022 US federal elections.Russia, China and...
US-CERT Vulnerability Summary for the Week of December 11, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Are We Ready to Give Up on Security Awareness Training?
Some of you have already started budgeting for 2024 and allocating funds to security areas within your organization. It is...
New Malvertising Campaign Distributing PikaBot Disguised as Popular Software
The malware loader known as PikaBot is being distributed as part of a malvertising campaign targeting users searching for legitimate...
Double-Extortion Play Ransomware Strikes 300 Organizations Worldwide
The threat actors behind the Play ransomware are estimated to have impacted approximately 300 entities as of October 2023, according...
8220 Gang Exploiting Oracle WebLogic Server Vulnerability to Spread Malware
The threat actors associated with the 8220 Gang have been observed exploiting a high-severity flaw in Oracle WebLogic Server to...
